Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
QualcommQcs2290 Firmware

393 matches found

CVE
CVEadded 2024/03/04 11:15 a.m.63 views

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

8.4CVSS8.6AI score0.00051EPSS
CVE
CVEadded 2024/09/02 12:15 p.m.63 views

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

7.8CVSS8AI score0.00039EPSS
CVE
CVEadded 2021/05/07 9:15 a.m.62 views

CVE-2021-1891

A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon W...

8.4CVSS7.7AI score0.00044EPSS
CVE
CVEadded 2023/03/10 9:15 p.m.62 views

CVE-2022-25655

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

8.4CVSS8.2AI score0.00067EPSS
CVE
CVEadded 2022/10/19 11:15 a.m.62 views

CVE-2022-25687

memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.7AI score0.00168EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.62 views

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

7.9CVSS8.1AI score0.00094EPSS
CVE
CVEadded 2023/01/09 8:15 a.m.62 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

7.5CVSS6.7AI score0.00158EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.62 views

CVE-2023-21651

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

9.3CVSS8.1AI score0.00052EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.62 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00082EPSS
CVE
CVEadded 2022/06/14 10:15 a.m.61 views

CVE-2021-30346

RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

6.5CVSS5.7AI score0.00096EPSS
CVE
CVEadded 2022/06/14 10:15 a.m.61 views

CVE-2021-35120

Improper handling between export and release functions on the same handle from client can lead to use after free in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

6.7CVSS6.8AI score0.00099EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.61 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00071EPSS
CVE
CVEadded 2022/12/13 4:15 p.m.61 views

CVE-2022-33235

Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

8.2CVSS7.7AI score0.00091EPSS
CVE
CVEadded 2023/01/09 8:15 a.m.61 views

CVE-2022-40516

Memory corruption in Core due to stack-based buffer overflow.

8.4CVSS8.1AI score0.04308EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.61 views

CVE-2022-40523

Information disclosure in Kernel due to indirect branch misprediction.

7.1CVSS5.6AI score0.0004EPSS
CVE
CVEadded 2023/06/06 8:15 a.m.61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS
CVE
CVEadded 2023/08/08 10:15 a.m.61 views

CVE-2023-22666

Memory Corruption in Audio while playing amrwbplus clips with modified content.

8.4CVSS7.9AI score0.00053EPSS
CVE
CVEadded 2023/10/03 6:15 a.m.61 views

CVE-2023-28540

Cryptographic issue in Data Modem due to improper authentication during TLS handshake.

9.1CVSS7.8AI score0.00067EPSS
CVE
CVEadded 2023/09/05 7:15 a.m.61 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.61 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS
CVE
CVEadded 2024/01/02 6:15 a.m.61 views

CVE-2023-33040

Transient DOS in Data Modem during DTLS handshake.

7.5CVSS7.5AI score0.00147EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.61 views

CVE-2023-43519

Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.

9.8CVSS9.5AI score0.00107EPSS
CVE
CVEadded 2025/03/03 11:15 a.m.61 views

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

7.8CVSS7.4AI score0.00024EPSS
CVE
CVEadded 2021/06/09 7:15 a.m.60 views

CVE-2020-11267

Stack out-of-bounds write occurs while setting up a cipher device if the provided IV length exceeds the max limit value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearab...

8.4CVSS7.8AI score0.00043EPSS
CVE
CVEadded 2022/01/13 12:15 p.m.60 views

CVE-2021-30319

Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdr...

7.8CVSS7.9AI score0.0012EPSS
CVE
CVEadded 2022/09/02 12:15 p.m.60 views

CVE-2022-25668

Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.5AI score0.00131EPSS
CVE
CVEadded 2022/09/16 6:15 a.m.60 views

CVE-2022-25690

Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Sna...

7.5CVSS7.5AI score0.00225EPSS
CVE
CVEadded 2023/03/10 9:15 p.m.60 views

CVE-2022-25694

Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM

8.4CVSS8AI score0.00067EPSS
CVE
CVEadded 2022/11/15 10:15 a.m.60 views

CVE-2022-33239

Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

7.5CVSS7.6AI score0.00187EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.60 views

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

8.4CVSS7.8AI score0.00054EPSS
CVE
CVEadded 2024/01/02 6:15 a.m.60 views

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

8.4CVSS7.8AI score0.0006EPSS
CVE
CVEadded 2024/01/02 6:15 a.m.60 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS
CVE
CVEadded 2025/05/06 9:15 a.m.60 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00017EPSS
CVE
CVEadded 2021/02/22 7:15 a.m.59 views

CVE-2020-11204

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

7.8CVSS7.7AI score0.00039EPSS
CVE
CVEadded 2022/01/03 8:15 a.m.59 views

CVE-2021-30337

Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearable...

8.4CVSS7.8AI score0.00037EPSS
CVE
CVEadded 2022/06/14 10:15 a.m.59 views

CVE-2021-35071

Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastruc...

5.5CVSS5.7AI score0.00109EPSS
CVE
CVEadded 2022/09/02 12:15 p.m.59 views

CVE-2022-22070

Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS7.8AI score0.00071EPSS
CVE
CVEadded 2023/09/05 7:15 a.m.59 views

CVE-2023-28564

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

7.8CVSS8AI score0.0003EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.59 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8CVSS7.9AI score0.00062EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.59 views

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

9.8CVSS7.4AI score0.00106EPSS
CVE
CVEadded 2024/11/04 10:15 a.m.59 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS
CVE
CVEadded 2021/03/17 6:15 a.m.58 views

CVE-2020-11192

Out of bound write while parsing SDP string due to missing check on null termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

10CVSS9.3AI score0.00396EPSS
CVE
CVEadded 2021/09/08 12:15 p.m.58 views

CVE-2021-1904

Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon We...

6.2CVSS5.5AI score0.00094EPSS
CVE
CVEadded 2021/10/20 7:15 a.m.58 views

CVE-2021-1980

Possible buffer over read due to lack of length check while parsing beacon IE response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap...

9.1CVSS7.6AI score0.00434EPSS
CVE
CVEadded 2024/11/22 10:15 a.m.58 views

CVE-2021-30299

Possible out of bound access in audio module due to lack of validation of user provided input.

6.7CVSS6.5AI score0.0003EPSS
CVE
CVEadded 2022/09/02 12:15 p.m.58 views

CVE-2021-35135

A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.2CVSS5.7AI score0.00047EPSS
CVE
CVEadded 2023/10/03 6:15 a.m.58 views

CVE-2023-24850

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

7.8CVSS7.6AI score0.0003EPSS
CVE
CVEadded 2023/12/05 3:15 a.m.58 views

CVE-2023-33054

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.

9.1CVSS9.3AI score0.0013EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.58 views

CVE-2023-33086

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

7.5CVSS7.5AI score0.00143EPSS
CVE
CVEadded 2024/06/03 10:15 a.m.58 views

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00111EPSS
Total number of security vulnerabilities393