CVE-2023-43517

Memory corruption in Automotive Multimedia due to improper access control in HAB.

CVE-2024-38405

Transient DOS while processing the CU information from RNR IE.

CVE-2022-22100

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

CVE-2022-25661

Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

CVE-2024-43064

Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

CVE-2021-35097

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon ...

CVE-2022-22106

Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto

CVE-2022-25665

Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile

CVE-2022-40519

Information disclosure due to buffer overread in Core

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

CVE-2024-49837

Memory corruption while reading CPU state data during guest VM suspend.

CVE-2024-49844

Memory corruption while triggering commands in the PlayReady Trusted application.

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

CVE-2024-45581

Memory corruption while sound model registration for voice activation with audio kernel driver.

CVE-2024-53012

Memory corruption may occur due to improper input validation in clock device.

CVE-2022-33218

Memory corruption in Automotive due to improper input validation.

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

CVE-2021-1894

Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CVE-2021-35114

Improper buffer initialization on the backend driver can lead to buffer overflow in Snapdragon Auto

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

CVE-2024-49842

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

CVE-2024-43060

Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.

CVE-2024-49841

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

CVE-2024-53022

Memory corruption may occur during communication between primary and guest VM.

CVE-2024-53029

Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.

CVE-2024-53031

Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately checked.

CVE-2024-23369

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

CVE-2024-33067

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

CVE-2024-53023

Memory corruption may occur while accessing a variable during extended back to back tests.

CVE-2024-53028

Memory corruption may occur while processing message from frontend during allocation.

CVE-2024-53032

Memory corruption may occur in keyboard virtual device due to guest VM interaction.

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

CVE-2023-43538

Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.

CVE-2024-21462

Transient DOS while loading the TA ELF file.

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or re-initialization.

CVE-2024-38417

Information disclosure while processing IO control commands.

CVE-2024-38418

Memory corruption while parsing the memory map info in IOCTL calls.

CVE-2024-38420

Memory corruption while configuring a Hypervisor based input virtual device.

CVE-2024-43061

Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.

CVE-2024-53030

Memory corruption while processing input message passed from FE driver.

CVE-2023-43530

Memory corruption in HLOS while checking for the storage type.

CVE-2021-30269

Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Inf...