Sa9000p Firmware Security Vulnerabilities and Issues — Page 4 of Sa9000p Firmware CVE List

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.

8.4CVSS8.5AI score0.00027EPSS

CVE•added 2025/01/06 11:15 a.m.•53 views

CVE-2024-45559

Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend.

5.5CVSS5.5AI score0.00026EPSS

CVE•added 2025/05/06 9:15 a.m.•53 views

CVE-2025-21460

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously.

7.8CVSS8AI score0.00026EPSS

CVE•added 2022/09/02 12:15 p.m.•52 views

CVE-2021-35132

Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.8AI score0.00083EPSS

CVE•added 2022/06/14 10:15 a.m.•52 views

CVE-2022-22103

Memory corruption in multimedia driver due to double free while processing data from user in Snapdragon Auto

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2023-21632

Memory corruption in Automotive GPU while querying a gsl memory node.

8.4CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2024/08/05 3:15 p.m.•52 views

CVE-2024-33034

Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.

8.4CVSS8.7AI score0.00035EPSS

CVE•added 2025/05/06 9:15 a.m.•52 views

CVE-2024-49845

Memory corruption during the FRS UDS generation process.

7.8CVSS7.9AI score0.00026EPSS

CVE•added 2022/06/14 10:15 a.m.•51 views

CVE-2021-35101

Improper handling of writes to virtual GICR control can lead to assertion failure in the hypervisor in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile

7.1CVSS6.5AI score0.0004EPSS

CVE•added 2022/09/02 12:15 p.m.•51 views

CVE-2022-22104

Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/10/19 11:15 a.m.•51 views

CVE-2022-33210

Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon Auto

8.4CVSS7.9AI score0.00076EPSS

CVE•added 2023/12/05 3:15 a.m.•51 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2024/02/06 6:16 a.m.•51 views

CVE-2023-43517

Memory corruption in Automotive Multimedia due to improper access control in HAB.

8.4CVSS7.7AI score0.00048EPSS

CVE•added 2024/08/05 3:15 p.m.•51 views

CVE-2024-23382

Memory corruption while processing graphics kernel driver request to create DMA fence.

8.4CVSS8.4AI score0.00035EPSS

CVE•added 2024/10/07 1:15 p.m.•51 views

CVE-2024-38397

Transient DOS while parsing probe response and assoc response frame.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2022/09/02 12:15 p.m.•50 views

CVE-2022-22100

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2024/05/06 3:15 p.m.•50 views

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.

6.1CVSS6.6AI score0.00041EPSS

CVE•added 2024/07/01 3:15 p.m.•50 views

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

7.8CVSS7.4AI score0.00109EPSS

CVE•added 2024/05/06 3:15 p.m.•50 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2024/08/05 3:15 p.m.•50 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

7.8CVSS6.7AI score0.00017EPSS

CVE•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-49844

Memory corruption while triggering commands in the PlayReady Trusted application.

7.8CVSS8AI score0.00026EPSS

CVE•added 2022/10/19 11:15 a.m.•49 views

CVE-2022-25661

Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.7AI score0.00085EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/08/05 3:15 p.m.•49 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•49 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2025/01/06 11:15 a.m.•49 views

CVE-2024-43064

Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.

7.5CVSS7.5AI score0.00014EPSS

CVE•added 2025/05/06 9:15 a.m.•49 views

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2022/09/02 12:15 p.m.•48 views

CVE-2021-35097

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon ...

7.3CVSS6.9AI score0.00007EPSS

CVE•added 2022/09/02 12:15 p.m.•48 views

CVE-2022-22106

Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto

8.4CVSS7.8AI score0.00071EPSS

CVE•added 2022/10/19 11:15 a.m.•48 views

CVE-2022-25665

Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile

7.1CVSS6.8AI score0.00045EPSS

CVE•added 2023/01/09 8:15 a.m.•48 views

CVE-2022-40519

Information disclosure due to buffer overread in Core