Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
QualcommQcn9074 Firmware-

134 matches found

CVE
CVEadded 2023/04/13 7:15 a.m.409 views

CVE-2022-40503

Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.

8.2CVSS7.7AI score0.00068EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.321 views

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

7.8CVSS8.1AI score0.00227EPSS
In wild
CVE
CVEadded 2023/12/05 3:15 a.m.314 views

CVE-2023-33107

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

8.4CVSS8.3AI score0.0007EPSS
In wild
CVE
CVEadded 2023/01/09 8:15 a.m.144 views

CVE-2022-22088

Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote

9.8CVSS9.2AI score0.00475EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.129 views

CVE-2022-33243

Memory corruption due to improper access control in Qualcomm IPC.

8.4CVSS8AI score0.00051EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.125 views

CVE-2023-21670

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.

7.8CVSS7.8AI score0.00035EPSS
CVE
CVEadded 2023/05/02 6:15 a.m.123 views

CVE-2023-21666

Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.

8.4CVSS8AI score0.0006EPSS
Web
CVE
CVEadded 2023/06/06 8:15 a.m.119 views

CVE-2023-21669

Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.

8.2CVSS7.5AI score0.0008EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.118 views

CVE-2022-33280

Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.

8.8CVSS8.1AI score0.00084EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.112 views

CVE-2023-28588

Transient DOS in Bluetooth Host while rfc slot allocation.

7.5CVSS7.5AI score0.00435EPSS
CVE
CVEadded 2023/01/09 8:15 a.m.111 views

CVE-2022-33255

Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.

8.2CVSS6.8AI score0.0008EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.111 views

CVE-2023-28553

Information Disclosure in WLAN Host when processing WMI event command.

6.1CVSS5.5AI score0.00056EPSS
CVE
CVEadded 2023/03/10 9:15 p.m.110 views

CVE-2022-40537

Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.

9.8CVSS8AI score0.00071EPSS
CVE
CVEadded 2023/07/04 5:15 a.m.109 views

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.

7.8CVSS7.6AI score0.00051EPSS
CVE
CVEadded 2023/05/02 6:15 a.m.108 views

CVE-2023-21665

Memory corruption in Graphics while importing a file.

8.4CVSS8.1AI score0.0007EPSS
CVE
CVEadded 2023/03/10 9:15 p.m.106 views

CVE-2022-22075

Information Disclosure in Graphics during GPU context switch.

6.2CVSS5.5AI score0.00046EPSS
CVE
CVEadded 2023/07/04 5:15 a.m.106 views

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS7.7AI score0.00052EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.106 views

CVE-2023-33059

Memory corruption in Audio while processing the VOC packet data from ADSP.

7.8CVSS7.8AI score0.00062EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.105 views

CVE-2023-33031

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.

7.8CVSS7.9AI score0.00062EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.103 views

CVE-2023-33053

Memory corruption in Kernel while parsing metadata.

8.4CVSS8.2AI score0.00128EPSS
CVE
CVEadded 2023/07/04 5:15 a.m.98 views

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS7.8AI score0.0006EPSS
CVE
CVEadded 2023/07/04 5:15 a.m.97 views

CVE-2023-28542

Memory Corruption in WLAN HOST while fetching TX status information.

7.8CVSS7.7AI score0.0006EPSS
CVE
CVEadded 2023/07/04 5:15 a.m.96 views

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS7.6AI score0.00051EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.94 views

CVE-2023-21649

Memory corruption in WLAN while running doDriverCmd for an unspecific command.

7.8CVSS7AI score0.00034EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.94 views

CVE-2023-28577

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.

7.8CVSS6.9AI score0.00031EPSS
CVE
CVEadded 2023/04/13 7:15 a.m.90 views

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption key.

9.3CVSS8.1AI score0.00044EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.90 views

CVE-2023-33082

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

9.8CVSS9.8AI score0.00195EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.89 views

CVE-2023-28575

The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.

7.8CVSS6.9AI score0.00038EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.86 views

CVE-2022-40514

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.

9.8CVSS9.8AI score0.00144EPSS
CVE
CVEadded 2023/04/13 7:15 a.m.85 views

CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

8.4CVSS8.2AI score0.00051EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.85 views

CVE-2023-21628

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

8.4CVSS8.2AI score0.00053EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.84 views

CVE-2023-28554

Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.

6.1CVSS5.5AI score0.00056EPSS
CVE
CVEadded 2023/10/03 6:15 a.m.84 views

CVE-2023-33028

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

9.8CVSS9AI score0.00103EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.83 views

CVE-2022-40510

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

9.8CVSS9.8AI score0.00124EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.83 views

CVE-2022-40529

Memory corruption due to improper access control in kernel while processing a mapping request from root process.

7.8CVSS7.3AI score0.00033EPSS
CVE
CVEadded 2023/03/10 9:15 p.m.82 views

CVE-2022-33245

Memory corruption in WLAN due to use after free

7.8CVSS7AI score0.00029EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.82 views

CVE-2023-28563

Information disclosure in IOE Firmware while handling WMI command.

6.1CVSS5.6AI score0.00054EPSS
CVE
CVEadded 2023/09/05 7:15 a.m.80 views

CVE-2023-21667

Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.

6.5CVSS6.4AI score0.00066EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.80 views

CVE-2023-28537

Memory corruption while allocating memory in COmxApeDec module in Audio.

8.4CVSS8.1AI score0.00053EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.79 views

CVE-2022-40512

Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.

7.5CVSS7.6AI score0.00123EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.79 views

CVE-2023-28569

Information disclosure in WLAN HAL while handling command through WMI interfaces.

6.1CVSS5.7AI score0.00054EPSS
CVE
CVEadded 2023/10/03 6:15 a.m.79 views

CVE-2023-28571

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.

6.1CVSS5.7AI score0.00027EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.77 views

CVE-2023-28570

Memory corruption while processing audio effects.

7.8CVSS7.2AI score0.0004EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.76 views

CVE-2022-40513

Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.

7.5CVSS7.5AI score0.00107EPSS
CVE
CVEadded 2023/09/05 7:15 a.m.75 views

CVE-2022-33275

Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.

8.4CVSS8.1AI score0.00044EPSS
CVE
CVEadded 2023/03/10 9:15 p.m.75 views

CVE-2022-40530

Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.

8.4CVSS8.3AI score0.00046EPSS
CVE
CVEadded 2023/10/03 6:15 a.m.75 views

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS7.2AI score0.00032EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.74 views

CVE-2022-33271

Information disclosure due to buffer over-read in WLAN while parsing NMF frame.

8.2CVSS7.7AI score0.00091EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.74 views

CVE-2023-33045

Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.

9.8CVSS9.7AI score0.0021EPSS
CVE
CVEadded 2023/02/12 4:15 a.m.73 views

CVE-2022-33279

Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length.

9.8CVSS10AI score0.00181EPSS
Total number of security vulnerabilities134