Qcs610 Firmware Security Vulnerabilities and Issues — Page 8 of Qcs610 Firmware CVE List

Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon ...

9.4CVSS8.9AI score0.00239EPSS

CVE•added 2020/11/02 7:15 a.m.•54 views

CVE-2020-3670

u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information Element(IEI) NAS message container' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in Agatt...

9.1CVSS9AI score0.0032EPSS

CVE•added 2022/09/02 12:15 p.m.•54 views

CVE-2021-35113

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.3CVSS6.9AI score0.00009EPSS

CVE•added 2022/06/14 10:15 a.m.•54 views

CVE-2021-35118

An out-of-bounds write can occur due to an incorrect input check in the camera driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.7CVSS6.7AI score0.00084EPSS

CVE•added 2022/09/02 12:15 p.m.•54 views

CVE-2022-22062

An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapd...

9.1CVSS8.9AI score0.00115EPSS

CVE•added 2022/11/15 10:15 a.m.•54 views

CVE-2022-33237

Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap...

7.5CVSS7.7AI score0.00123EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

7.8CVSS8AI score0.00053EPSS

CVE•added 2022/09/16 6:15 a.m.•53 views

CVE-2022-22091

Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.6AI score0.00217EPSS

CVE•added 2022/12/13 4:15 p.m.•53 views

CVE-2022-25711

Memory corruption in camera due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.8CVSS7.8AI score0.00027EPSS

CVE•added 2022/12/13 4:15 p.m.•53 views

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

7.5CVSS7.6AI score0.00145EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-40518

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in Core

8.4CVSS8.3AI score0.04308EPSS

CVE•added 2023/12/05 3:15 a.m.•53 views

CVE-2023-28587

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.

7.8CVSS8AI score0.00068EPSS

CVE•added 2024/11/04 10:15 a.m.•53 views

CVE-2024-38423

Memory corruption while processing GPU page table switch.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2021/05/07 9:15 a.m.•52 views

CVE-2020-11274

Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.5AI score0.00245EPSS

CVE•added 2020/11/02 7:15 a.m.•52 views

CVE-2020-3692

u'Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input validation for parameters received from server' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in Agatti, Kamorta, Nicoba...

10CVSS9.6AI score0.00356EPSS

CVE•added 2022/09/02 12:15 p.m.•52 views

CVE-2021-35132

Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.8AI score0.00083EPSS

CVE•added 2022/09/16 6:15 a.m.•52 views

CVE-2022-25669

Denial of service in video due to buffer over read while parsing MP4 clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.5CVSS7.6AI score0.00276EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2022-33267

Memory corruption in Linux while sending DRM request.

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/10/03 6:15 a.m.•52 views

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS7.2AI score0.00032EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS8.1AI score0.00068EPSS

CVE•added 2020/09/08 10:15 a.m.•51 views

CVE-2019-10628

u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil...

7.8CVSS7.6AI score0.00094EPSS

CVE•added 2020/09/08 10:15 a.m.•51 views

CVE-2020-3622

u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sna...

7.8CVSS7.6AI score0.0005EPSS

CVE•added 2021/05/07 9:15 a.m.•51 views

CVE-2021-1925

Possible denial of service scenario due to improper handling of group management action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Musi...

7.8CVSS7.5AI score0.00245EPSS

CVE•added 2022/12/13 4:15 p.m.•51 views

CVE-2022-25712

Memory corruption in camera due to buffer copy without checking size of input in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wearables

7.8CVSS7.9AI score0.00036EPSS

CVE•added 2023/07/04 5:15 a.m.•51 views

CVE-2023-22667

Memory Corruption in Audio while allocating the ion buffer during the music playback.

8.4CVSS8.1AI score0.00051EPSS

CVE•added 2024/08/05 3:15 p.m.•51 views

CVE-2024-33028

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2020/09/08 10:15 a.m.•50 views

CVE-2019-13992

u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, ...

7.8CVSS7.7AI score0.00033EPSS

CVE•added 2022/10/19 11:15 a.m.•50 views

CVE-2022-25662

Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.3AI score0.00257EPSS

CVE•added 2022/12/13 4:15 p.m.•50 views

CVE-2022-25677

Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

7.8CVSS8AI score0.00032EPSS

CVE•added 2022/12/13 4:15 p.m.•50 views

CVE-2022-25685

Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.5AI score0.00139EPSS

CVE•added 2023/12/05 3:15 a.m.•50 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2020/09/08 10:15 a.m.•49 views

CVE-2019-10629

u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

7.8CVSS7.5AI score0.00094EPSS

CVE•added 2021/05/07 9:15 a.m.•49 views

CVE-2021-1915

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, ...

7.8CVSS7.7AI score0.00035EPSS

CVE•added 2021/09/09 8:15 a.m.•49 views

CVE-2021-1935

Possible null pointer dereference due to lack of validation check for passed pointer during key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

7.1CVSS5.7AI score0.0004EPSS

CVE•added 2022/01/13 12:15 p.m.•49 views

CVE-2021-30300

Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voic...

7.5CVSS7.5AI score0.00359EPSS

CVE•added 2022/09/16 6:15 a.m.•49 views

CVE-2022-22074

Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/09/16 6:15 a.m.•49 views

CVE-2022-25688

Memory corruption in video due to buffer overflow while parsing ps video clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.7AI score0.0019EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-22383

Memory Corruption in camera while installing a fd for a particular DMA buffer.

7.8CVSS7AI score0.0004EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-28579

Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length.

7.8CVSS6.8AI score0.00042EPSS

CVE•added 2024/01/02 6:15 a.m.•49 views

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

7.5CVSS7.5AI score0.00229EPSS

CVE•added 2025/05/06 9:15 a.m.•49 views

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2020/09/08 10:15 a.m.•48 views

CVE-2019-10596

u'Improper access control can lead signed process to guess pid of other processes and access their address space' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in...

7.8CVSS7.6AI score0.00033EPSS

CVE•added 2020/09/08 10:15 a.m.•48 views

CVE-2019-10615

u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, ...

7.8CVSS7.8AI score0.00039EPSS

Total number of security vulnerabilities569