Sa8530p Firmware@- Security Vulnerabilities and Issues — Sa8530p Firmware@- CVE List

Lucene search

QualcommSa8530p Firmware-

38 matches found

CVE•added 2024/07/01 3:15 p.m.•77 views

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

8.4CVSS8.3AI score0.00039EPSS

CVE•added 2024/05/06 3:15 p.m.•69 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00082EPSS

CVE•added 2024/11/04 10:15 a.m.•67 views

CVE-2024-38415

Memory corruption while handling session errors from firmware.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/09/02 12:15 p.m.•62 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2024/09/02 12:15 p.m.•60 views

CVE-2024-33045

Memory corruption when BTFM client sends new messages over Slimbus to ADSP.

8.4CVSS8.2AI score0.00039EPSS

CVE•added 2024/10/07 1:15 p.m.•60 views

CVE-2024-33049

Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.

7.5CVSS7.6AI score0.00163EPSS

CVE•added 2024/09/02 12:15 p.m.•60 views

CVE-2024-33057

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

7.5CVSS7.5AI score0.00264EPSS

CVE•added 2024/11/04 10:15 a.m.•60 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/05/06 3:15 p.m.•59 views

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.

8.4CVSS7.2AI score0.00082EPSS

CVE•added 2024/10/07 1:15 p.m.•59 views

CVE-2024-33069

Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.

7.5CVSS7.5AI score0.00126EPSS

CVE•added 2024/12/02 11:15 a.m.•57 views

CVE-2024-33036

Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.

6.7CVSS6.6AI score0.00015EPSS

CVE•added 2024/07/01 3:15 p.m.•55 views

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/12/02 11:15 a.m.•55 views

CVE-2024-33044

Memory corruption while Configuring the SMR/S2CR register in Bypass mode.

8.4CVSS8.6AI score0.00027EPSS

CVE•added 2024/11/04 10:15 a.m.•55 views

CVE-2024-38423

Memory corruption while processing GPU page table switch.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/08/05 3:15 p.m.•52 views

CVE-2024-33028

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/11/04 10:15 a.m.•51 views

CVE-2024-38405

Transient DOS while processing the CU information from RNR IE.

7.5CVSS6.8AI score0.00134EPSS

CVE•added 2024/05/06 3:15 p.m.•48 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2024/12/02 11:15 a.m.•46 views

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

8.4CVSS8.6AI score0.00027EPSS

CVE•added 2024/07/01 3:15 p.m.•45 views

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4CVSS8.3AI score0.00035EPSS

CVE•added 2024/10/07 1:15 p.m.•43 views

CVE-2024-23369

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2024/05/06 3:15 p.m.•42 views

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

8.4CVSS7.1AI score0.00045EPSS

CVE•added 2024/07/01 3:15 p.m.•42 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00033EPSS

CVE•added 2024/05/06 3:15 p.m.•42 views

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or re-initialization.

8.4CVSS7.3AI score0.00061EPSS

CVE•added 2024/08/05 3:15 p.m.•39 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•38 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•38 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•37 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/12/02 11:15 a.m.•37 views

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.

6.1CVSS6.2AI score0.0002EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33018

Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.

7.5CVSS7.6AI score0.00628EPSS

CVE•added 2024/12/02 11:15 a.m.•36 views

CVE-2024-33053

Memory corruption when multiple threads try to unregister the CVP buffer at the same time.