Sa8145p Firmware Security Vulnerabilities and Issues — Page 7 of Sa8145p Firmware CVE List

Improper validation of kernel buffer address while copying information back to user buffer can lead to kernel memory information exposure to user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

6.2CVSS5.5AI score0.00018EPSS

CVE•added 2022/11/15 10:15 a.m.•54 views

CVE-2022-33237

Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap...

7.5CVSS7.7AI score0.00154EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2022-40524

Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service.

7.8CVSS7.2AI score0.0002EPSS

CVE•added 2023/08/08 10:15 a.m.•54 views

CVE-2023-21627

Memory corruption in Trusted Execution Environment while calling service API with invalid address.

7.8CVSS7.2AI score0.00031EPSS

CVE•added 2023/12/05 3:15 a.m.•54 views

CVE-2023-21634

Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.

7.8CVSS7AI score0.0004EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•54 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•54 views

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS8.1AI score0.00068EPSS

CVE•added 2024/05/06 3:15 p.m.•54 views

CVE-2023-43526

Memory corruption while querying module parameters from Listen Sound model client in kernel from user space.

7.8CVSS6.9AI score0.00031EPSS

CVE•added 2022/09/02 12:15 p.m.•53 views

CVE-2022-22101

Denial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon Auto

6.2CVSS5.6AI score0.0006EPSS

CVE•added 2022/12/13 4:15 p.m.•53 views

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

7.5CVSS7.6AI score0.00145EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-33253

Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.

7.5CVSS5.9AI score0.00112EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-40518

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in Core

8.4CVSS8.3AI score0.04308EPSS

CVE•added 2023/07/04 5:15 a.m.•53 views

CVE-2023-22667

Memory Corruption in Audio while allocating the ion buffer during the music playback.

8.4CVSS8.1AI score0.00051EPSS

CVE•added 2023/09/05 7:15 a.m.•53 views

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command parameters.

7.8CVSS8AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•53 views

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2024/08/05 3:15 p.m.•53 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•53 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2025/01/06 11:15 a.m.•53 views

CVE-2024-45555

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.

8.4CVSS8.5AI score0.00027EPSS

CVE•added 2025/05/06 9:15 a.m.•53 views

CVE-2025-21460

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously.

7.8CVSS8AI score0.00026EPSS

CVE•added 2021/11/12 7:15 a.m.•52 views

CVE-2021-30265

Possible memory corruption due to improper validation of memory address while processing user-space IOCTL for clearing Filter and Route statistics in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice...

6.7CVSS6.9AI score0.00055EPSS

CVE•added 2022/01/13 12:15 p.m.•52 views

CVE-2021-30313

Use after free condition can occur in wired connectivity due to a race condition while creating and deleting folders in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

6.7CVSS6.8AI score0.00076EPSS

CVE•added 2022/11/15 10:15 a.m.•52 views

CVE-2022-25710

Denial of service due to null pointer dereference when GATT is disconnected in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

7.5CVSS7.5AI score0.00204EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2022-33230

Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/01/09 8:15 a.m.•52 views

CVE-2022-33252

Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.

8.2CVSS6AI score0.00063EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2022-33267

Memory corruption in Linux while sending DRM request.

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2023-21632

Memory corruption in Automotive GPU while querying a gsl memory node.

8.4CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33024

Memory corruption while sending SMS from AP firmware.

7.8CVSS7.2AI score0.0004EPSS

CVE•added 2024/08/05 3:15 p.m.•52 views

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2025/05/06 9:15 a.m.•52 views

CVE-2024-49845

Memory corruption during the FRS UDS generation process.

7.8CVSS7.9AI score0.00026EPSS

CVE•added 2021/09/09 8:15 a.m.•51 views

CVE-2021-1971

Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.4AI score0.00369EPSS

CVE•added 2022/09/02 12:15 p.m.•51 views

CVE-2022-22104

Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/10/19 11:15 a.m.•51 views

CVE-2022-33210

Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon Auto

8.4CVSS7.9AI score0.00081EPSS

CVE•added 2023/12/05 3:15 a.m.•51 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•51 views

CVE-2023-28548

Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.

7.8CVSS8AI score0.00024EPSS

CVE•added 2023/12/05 3:15 a.m.•51 views

CVE-2023-33071

Memory corruption in Automotive OS whenever untrusted apps try to access HAb for graphics functionalities.

8.4CVSS8AI score0.00065EPSS

CVE•added 2024/01/02 6:15 a.m.•51 views

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

7.5CVSS7.5AI score0.00229EPSS

CVE•added 2021/09/09 8:15 a.m.•50 views

CVE-2021-1958

A race condition in fastrpc kernel driver for dynamic process creation can lead to use after free scenario in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables

6.7CVSS6.5AI score0.00037EPSS

CVE•added 2021/10/20 7:15 a.m.•50 views

CVE-2021-1966

Possible buffer overflow due to lack of length check of source and destination buffer before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

6.7CVSS6.9AI score0.00059EPSS

CVE•added 2021/10/20 7:15 a.m.•50 views

CVE-2021-1967

Possible stack buffer overflow due to lack of check on the maximum number of post NAN discovery attributes while processing a NAN Match event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Mu...

5.3CVSS5.7AI score0.0006EPSS

CVE•added 2022/09/02 12:15 p.m.•50 views

CVE-2022-22100

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto

8.4CVSS7.8AI score0.00093EPSS

Total number of security vulnerabilities470