Sa8155p Firmware Security Vulnerabilities and Issues — Page 11 of Sa8155p Firmware CVE List

Possible denial of service scenario due to improper handling of group management action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Musi...

7.8CVSS7.5AI score0.00245EPSS

CVE•added 2021/09/09 8:15 a.m.•51 views

CVE-2021-1971

Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.4AI score0.00369EPSS

CVE•added 2022/09/02 12:15 p.m.•51 views

CVE-2022-22104

Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/10/19 11:15 a.m.•51 views

CVE-2022-33210

Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon Auto

8.4CVSS7.9AI score0.00081EPSS

CVE•added 2023/12/05 3:15 a.m.•51 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•51 views

CVE-2023-28548

Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.

7.8CVSS8AI score0.00024EPSS

CVE•added 2023/12/05 3:15 a.m.•51 views

CVE-2023-33071

Memory corruption in Automotive OS whenever untrusted apps try to access HAb for graphics functionalities.

8.4CVSS8AI score0.00065EPSS

CVE•added 2024/01/02 6:15 a.m.•51 views

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

7.5CVSS7.5AI score0.00229EPSS

CVE•added 2024/05/06 3:15 p.m.•51 views

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.

6.1CVSS6.6AI score0.00041EPSS

CVE•added 2024/08/05 3:15 p.m.•51 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/10/07 1:15 p.m.•51 views

CVE-2024-38397

Transient DOS while parsing probe response and assoc response frame.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2021/09/09 8:15 a.m.•50 views

CVE-2021-1962

Buffer Overflow while processing IOCTL for getting peripheral endpoint information there is no proper validation for input maximum endpoint pair and its size in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastruct...

6.7CVSS6.6AI score0.00059EPSS

CVE•added 2022/09/02 12:15 p.m.•50 views

CVE-2022-22100

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/10/19 11:15 a.m.•50 views

CVE-2022-25662

Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.3AI score0.00274EPSS

CVE•added 2023/07/04 5:15 a.m.•50 views

CVE-2023-21633

Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request.

7.8CVSS6.8AI score0.00029EPSS

CVE•added 2024/07/01 3:15 p.m.•50 views

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

7.8CVSS7.4AI score0.00109EPSS

CVE•added 2024/05/06 3:15 p.m.•50 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2024/08/05 3:15 p.m.•50 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•50 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

7.8CVSS6.7AI score0.00017EPSS

CVE•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-49844

Memory corruption while triggering commands in the PlayReady Trusted application.

7.8CVSS8AI score0.00026EPSS

CVE•added 2021/05/07 9:15 a.m.•49 views

CVE-2021-1915

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, ...

7.8CVSS7.7AI score0.00035EPSS

CVE•added 2021/09/09 8:15 a.m.•49 views

CVE-2021-1935

Possible null pointer dereference due to lack of validation check for passed pointer during key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

7.1CVSS5.7AI score0.0004EPSS

CVE•added 2021/10/20 7:15 a.m.•49 views

CVE-2021-1968

Improper validation of kernel buffer address while copying information back to user buffer can lead to kernel memory information exposure to user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

6.2CVSS5.5AI score0.00018EPSS

CVE•added 2022/01/13 12:15 p.m.•49 views

CVE-2021-30300

Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voic...

7.5CVSS7.5AI score0.00359EPSS

CVE•added 2022/09/16 6:15 a.m.•49 views

CVE-2022-22074

Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/09/02 12:15 p.m.•49 views

CVE-2022-22102

Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto

8.4CVSS7.8AI score0.00061EPSS

CVE•added 2022/10/19 11:15 a.m.•49 views

CVE-2022-25661

Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.7AI score0.00085EPSS

CVE•added 2022/09/16 6:15 a.m.•49 views

CVE-2022-25688

Memory corruption in video due to buffer overflow while parsing ps video clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.7AI score0.0019EPSS

CVE•added 2023/07/04 5:15 a.m.•49 views

CVE-2023-21638

Memory corruption in Video while calling APIs with different instance ID than the one received in initialization.

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/09/05 7:15 a.m.•49 views

CVE-2023-21644

Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.

7.8CVSS7AI score0.0002EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/05/06 3:15 p.m.•49 views

CVE-2023-43526

Memory corruption while querying module parameters from Listen Sound model client in kernel from user space.

7.8CVSS6.9AI score0.0003EPSS

CVE•added 2024/08/05 3:15 p.m.•49 views

CVE-2024-33020

Transient DOS while processing TID-to-link mapping IE elements.

7.5CVSS7.6AI score0.00189EPSS

CVE•added 2025/01/06 11:15 a.m.•49 views

CVE-2024-33041

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,

7.8CVSS6.8AI score0.00021EPSS

CVE•added 2025/05/06 9:15 a.m.•49 views

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2020/11/12 10:15 a.m.•48 views

CVE-2020-11196

u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8009W, APQ8...

10CVSS9.5AI score0.00356EPSS

CVE•added 2020/11/12 10:15 a.m.•48 views

CVE-2020-11206

Possible buffer overflow in Fastrpc while handling received parameters due to lack of validation on input parameters' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125...

7.8CVSS7.9AI score0.00661EPSS

CVE•added 2021/06/09 7:15 a.m.•48 views

CVE-2021-1937

Reachable assertion is possible while processing peer association WLAN message from host and nonstandard incoming packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobi...

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2022/01/03 8:15 a.m.•48 views

CVE-2021-30273

Possible assertion due to improper handling of IPV6 packet with invalid length in destination options header in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2022/01/03 8:15 a.m.•48 views

CVE-2021-30274

Possible integer overflow in access control initialization interface due to lack and size and address validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Network...

8.4CVSS7.8AI score0.00033EPSS

CVE•added 2021/10/20 7:15 a.m.•48 views

CVE-2021-30288

Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon M...

8.4CVSS7.4AI score0.00035EPSS

CVE•added 2022/01/13 12:15 p.m.•48 views

CVE-2021-30307

Possible denial of service due to improper validation of DNS response when DNS client requests with PTR, NAPTR or SRV query type in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT

7.5CVSS7.5AI score0.00359EPSS

CVE•added 2022/09/02 12:15 p.m.•48 views

CVE-2021-35097

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon ...

7.3CVSS6.9AI score0.00007EPSS

Total number of security vulnerabilities723