Sa9000p Firmware Security Vulnerabilities and Issues — Page 3 of Sa9000p Firmware CVE List

Lucene search

QualcommSa9000p Firmware

298 matches found

CVE•added 2024/05/06 3:15 p.m.•69 views

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.

6.1CVSS6.6AI score0.00056EPSS

CVE•added 2024/08/05 3:15 p.m.•69 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00156EPSS

CVE•added 2022/06/14 10:15 a.m.•68 views

CVE-2021-35090

Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

9.3CVSS7.8AI score0.0003EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.0006EPSS

CVE•added 2024/02/06 6:16 a.m.•68 views

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

7.8CVSS7.8AI score0.00031EPSS

CVE•added 2024/05/06 3:15 p.m.•68 views

CVE-2023-43526

Memory corruption while querying module parameters from Listen Sound model client in kernel from user space.

7.8CVSS6.9AI score0.00042EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

9.8CVSS7.4AI score0.00084EPSS

CVE•added 2024/08/05 3:15 p.m.•68 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2024/08/05 3:15 p.m.•68 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2024/08/05 3:15 p.m.•68 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2023/02/12 4:15 a.m.•67 views

CVE-2022-33232

Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.

9.3CVSS8.4AI score0.0006EPSS

CVE•added 2023/03/10 9:15 p.m.•67 views

CVE-2022-33257

Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.

9.3CVSS7.6AI score0.00042EPSS

CVE•added 2024/02/06 6:16 a.m.•67 views

CVE-2023-43518

Memory corruption in video while parsing invalid mp2 clip.

9.8CVSS9.5AI score0.00107EPSS

CVE•added 2024/08/05 3:15 p.m.•67 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2024/08/05 3:15 p.m.•67 views

CVE-2024-33020

Transient DOS while processing TID-to-link mapping IE elements.

7.5CVSS7.6AI score0.0027EPSS

CVE•added 2025/02/03 5:15 p.m.•67 views

CVE-2024-38416

Information disclosure during audio playback.

6.1CVSS6.2AI score0.00021EPSS

CVE•added 2023/05/02 8:15 a.m.•66 views

CVE-2022-33273

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.

7.3CVSS5.9AI score0.0003EPSS

CVE•added 2023/03/10 9:15 p.m.•66 views

CVE-2022-33278

Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.

7.8CVSS7.9AI score0.00067EPSS

CVE•added 2023/11/07 6:15 a.m.•66 views

CVE-2023-28574

Memory corruption in core services when Diag handler receives a command to configure event listeners.

9CVSS8.2AI score0.00045EPSS

CVE•added 2024/08/05 3:15 p.m.•66 views

CVE-2024-33019

Transient DOS while parsing the received TID-to-link mapping action frame.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2024/08/05 3:15 p.m.•66 views

CVE-2024-33024

Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.

7.5CVSS7.6AI score0.00349EPSS

CVE•added 2024/12/02 11:15 a.m.•66 views

CVE-2024-33039

Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.

6.7CVSS6.8AI score0.00028EPSS

CVE•added 2023/06/06 8:15 a.m.•65 views

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the list.

8.4CVSS8.1AI score0.0301EPSS

CVE•added 2024/03/04 11:15 a.m.•65 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00111EPSS

CVE•added 2023/12/05 3:15 a.m.•65 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS

CVE•added 2024/08/05 3:15 p.m.•65 views

CVE-2024-23381

Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU.

8.4CVSS8.6AI score0.00156EPSS

CVE•added 2024/08/05 3:15 p.m.•65 views

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2024/08/05 3:15 p.m.•65 views

CVE-2024-33018

Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.

7.5CVSS7.6AI score0.00869EPSS

CVE•added 2024/08/05 3:15 p.m.•65 views

CVE-2024-33025

Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.

7.5CVSS7.6AI score0.00346EPSS

CVE•added 2022/06/14 10:15 a.m.•64 views

CVE-2021-35094

Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2023/01/09 8:15 a.m.•64 views

CVE-2022-33219

Memory corruption in Automotive due to integer overflow to buffer overflow while registering a new listener with shared buffer.

9.3CVSS8.2AI score0.00096EPSS

CVE•added 2024/02/06 6:16 a.m.•64 views

CVE-2023-43519

Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.

9.8CVSS9.5AI score0.00107EPSS

CVE•added 2023/08/08 10:15 a.m.•63 views

CVE-2023-21651

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

9.3CVSS8.1AI score0.00052EPSS

CVE•added 2023/11/07 6:15 a.m.•63 views

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

8.4CVSS7.8AI score0.00054EPSS

CVE•added 2023/10/03 6:15 a.m.•63 views

CVE-2023-24853

Memory Corruption in HLOS while registering for key provisioning notify.

8.4CVSS7.9AI score0.0003EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00054EPSS

CVE•added 2023/01/09 8:15 a.m.•62 views

CVE-2022-25746

Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.

8.1CVSS7.8AI score0.00042EPSS

CVE•added 2023/01/09 8:15 a.m.•62 views

CVE-2022-40516

Memory corruption in Core due to stack-based buffer overflow.

8.4CVSS8.1AI score0.04308EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2022-40523

Information disclosure in Kernel due to indirect branch misprediction.

7.1CVSS5.6AI score0.0004EPSS

CVE•added 2024/03/04 11:15 a.m.•62 views

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

9.8CVSS7.4AI score0.00144EPSS

CVE•added 2025/05/06 9:15 a.m.•62 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00022EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-33307

Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.

8.4CVSS8AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in log.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/10/03 6:15 a.m.•61 views

CVE-2023-24850

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

7.8CVSS7.6AI score0.0003EPSS

CVE•added 2023/11/07 6:15 a.m.•61 views

CVE-2023-28545

Memory corruption in TZ Secure OS while loading an app ELF.

8.2CVSS8AI score0.0004EPSS

CVE•added 2023/04/13 7:15 a.m.•60 views

CVE-2022-33282

Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.

8.4CVSS8.2AI score0.00046EPSS

CVE•added 2023/09/05 7:15 a.m.•60 views

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in log.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2024/02/06 6:15 a.m.•60 views

CVE-2023-33046

Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.

7.8CVSS7.2AI score0.00018EPSS

CVE•added 2024/12/02 11:15 a.m.•60 views

CVE-2024-33036

Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.

6.7CVSS6.6AI score0.00018EPSS

CVE•added 2022/09/02 12:15 p.m.•59 views

CVE-2021-35135

A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.2CVSS5.7AI score0.00055EPSS

Total number of security vulnerabilities298