Sa8195p Firmware@- Security Vulnerabilities and Issues — Page 12 of Sa8195p Firmware@- CVE List

Lucene search

QualcommSa8195p Firmware-

629 matches found

CVE•added 2025/03/03 11:15 a.m.•41 views

CVE-2024-43061

Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•41 views

CVE-2024-53030

Memory corruption while processing input message passed from FE driver.

7.8CVSS7.4AI score0.00036EPSS

CVE•added 2021/09/09 8:15 a.m.•40 views

CVE-2021-1934

Possible memory corruption due to improper check when application loader object is explicitly destructed while application is unloading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT

8.4CVSS7.8AI score0.00039EPSS

CVE•added 2021/09/09 8:15 a.m.•40 views

CVE-2021-1956

Improper handling of ASB-U packet with L2CAP channel ID by slave host can lead to interference with piconet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

6.5CVSS6.5AI score0.00071EPSS

CVE•added 2021/09/17 7:15 a.m.•40 views

CVE-2021-30261

Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.9AI score0.00035EPSS

CVE•added 2021/11/12 7:15 a.m.•40 views

CVE-2021-30265

Possible memory corruption due to improper validation of memory address while processing user-space IOCTL for clearing Filter and Route statistics in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice...

6.7CVSS6.9AI score0.00055EPSS

CVE•added 2022/01/03 8:15 a.m.•40 views

CVE-2021-30272

Possible null pointer dereference in thread cache operation handler due to lack of validation of user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & ...

7.8CVSS7.6AI score0.00031EPSS

CVE•added 2021/10/20 7:15 a.m.•40 views

CVE-2021-30310

Possible buffer overflow due to Improper validation of received CF-ACK and CF-Poll data frames in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music

7.5CVSS7.6AI score0.0028EPSS

CVE•added 2022/01/13 12:15 p.m.•40 views

CVE-2021-30313

Use after free condition can occur in wired connectivity due to a race condition while creating and deleting folders in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

6.7CVSS6.8AI score0.00076EPSS

CVE•added 2024/08/05 3:15 p.m.•40 views

CVE-2024-23382

Memory corruption while processing graphics kernel driver request to create DMA fence.

8.4CVSS8.4AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•40 views

CVE-2024-33027

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.

8.4CVSS8.5AI score0.00029EPSS

CVE•added 2024/11/04 10:15 a.m.•40 views

CVE-2024-38419

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2021/04/07 8:15 a.m.•39 views

CVE-2020-11246

A double free condition can occur when the device moves to suspend mode during secure playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.6AI score0.00033EPSS

CVE•added 2021/09/17 7:15 a.m.•39 views

CVE-2021-30260

Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT,...

8.4CVSS8AI score0.00054EPSS

CVE•added 2022/01/03 8:15 a.m.•39 views

CVE-2021-30269

Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Inf...

7.8CVSS7.7AI score0.00031EPSS

CVE•added 2022/01/03 8:15 a.m.•39 views

CVE-2021-30282

Possible out of bound write in RAM partition table due to improper validation on number of partitions provided in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networkin...

8.4CVSS7.7AI score0.00033EPSS

CVE•added 2022/01/13 12:15 p.m.•39 views

CVE-2021-30285

Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

9.3CVSS8.6AI score0.00043EPSS

CVE•added 2025/02/03 5:15 p.m.•39 views

CVE-2024-38414

Information disclosure while processing information on firmware image during core initialization.

6.1CVSS6.2AI score0.00019EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00015EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43057

Memory corruption while processing command in Glink linux.

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2020/11/12 10:15 a.m.•38 views

CVE-2020-11132

u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ...

7.1CVSS7.1AI score0.00043EPSS

CVE•added 2021/05/07 9:15 a.m.•38 views

CVE-2020-11295

Use after free in camera If the threadmanager is being cleaned up while the worker thread is processing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS8.1AI score0.00044EPSS

CVE•added 2021/06/09 7:15 a.m.•38 views

CVE-2020-11298

While waiting for a response to a callback or listener request, non-secure clients can change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrago...

7.8CVSS6.9AI score0.00019EPSS

CVE•added 2021/09/08 12:15 p.m.•38 views

CVE-2021-1930

Possible out of bounds read due to incorrect validation of incoming buffer length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.1CVSS7AI score0.00041EPSS

CVE•added 2021/10/20 7:15 a.m.•38 views

CVE-2021-1936

Null pointer dereference can occur due to lack of null check for user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.8CVSS7.3AI score0.00246EPSS

CVE•added 2023/01/09 8:15 a.m.•38 views

CVE-2022-40517

Memory corruption in core due to stack-based buffer overflow

8.4CVSS8.3AI score0.00091EPSS

CVE•added 2024/08/05 3:15 p.m.•38 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2020/11/12 10:15 a.m.•37 views

CVE-2020-11123

u'information disclosure in gatekeeper trustzone implementation as the throttling mechanism to prevent brute force attempts at getting user`s lock-screen password can be bypassed by performing the standard gatekeeper operations.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snap...

5.5CVSS5.7AI score0.00045EPSS

CVE•added 2020/11/12 10:15 a.m.•37 views

CVE-2020-11127

u'Integer overflow can cause a buffer overflow due to lack of table length check in the extensible boot Loader during the validation of security metadata while processing objects to be loaded' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mob...

7.8CVSS8AI score0.00035EPSS

CVE•added 2021/05/07 9:15 a.m.•37 views

CVE-2020-11294

Out of bound write in logger due to prefix size is not validated while prepended to logging string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.8CVSS7.7AI score0.00041EPSS

CVE•added 2021/09/08 12:15 p.m.•37 views

CVE-2021-1923

Incorrect pointer argument passed to trusted application TA could result in un-intended memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT

7.8CVSS7.6AI score0.00043EPSS

CVE•added 2021/09/09 8:15 a.m.•37 views

CVE-2021-1958

A race condition in fastrpc kernel driver for dynamic process creation can lead to use after free scenario in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables

6.7CVSS6.5AI score0.00037EPSS

CVE•added 2021/10/20 7:15 a.m.•37 views

CVE-2021-1967

Possible stack buffer overflow due to lack of check on the maximum number of post NAN discovery attributes while processing a NAN Match event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Mu...

5.3CVSS5.7AI score0.0006EPSS

CVE•added 2024/08/05 3:15 p.m.•37 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•37 views

CVE-2024-33020

Transient DOS while processing TID-to-link mapping IE elements.

7.5CVSS7.6AI score0.00189EPSS

CVE•added 2024/08/05 3:15 p.m.•37 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/12/02 11:15 a.m.•37 views

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.

6.1CVSS6.2AI score0.0002EPSS

CVE•added 2024/11/04 10:15 a.m.•37 views

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

9.1CVSS9AI score0.00062EPSS

CVE•added 2021/10/20 7:15 a.m.•36 views

CVE-2021-1932

Improper access control in trusted application environment can cause unauthorized access to CDSP or ADSP VM memory with either privilege in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastru...

8.4CVSS7.6AI score0.00031EPSS

CVE•added 2021/10/20 7:15 a.m.•36 views

CVE-2021-30315

Improper handling of sensor HAL structure in absence of sensor can lead to use after free in Snapdragon Auto

8.4CVSS7.8AI score0.00037EPSS

CVE•added 2022/10/19 11:15 a.m.•36 views

CVE-2022-22078

Denial of service in BOOT when partition size for a particular partition is requested due to integer overflow when blocks are calculated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

4.6CVSS5.1AI score0.0006EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33019

Transient DOS while parsing the received TID-to-link mapping action frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33024

Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/12/02 11:15 a.m.•36 views

CVE-2024-33053

Memory corruption when multiple threads try to unregister the CVP buffer at the same time.

6.7CVSS6.8AI score0.00023EPSS

CVE•added 2024/11/04 10:15 a.m.•36 views

CVE-2024-38424

Memory corruption during GNSS HAL process initialization.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2021/10/20 7:15 a.m.•35 views

CVE-2021-1966

Possible buffer overflow due to lack of length check of source and destination buffer before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

6.7CVSS6.9AI score0.00059EPSS

CVE•added 2022/01/03 8:15 a.m.•35 views

CVE-2021-30289

Possible buffer overflow due to lack of range check while processing a DIAG command for COEX management in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS8AI score0.00035EPSS

CVE•added 2023/01/09 8:15 a.m.•35 views

CVE-2022-25721

Memory corruption in video driver due to type confusion error during video playback

7.8CVSS7.1AI score0.0004EPSS

CVE•added 2024/08/05 3:15 p.m.•35 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00244EPSS

Total number of security vulnerabilities629