CVE-2024-49837

Memory corruption while reading CPU state data during guest VM suspend.

CVE-2021-35097

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon ...

CVE-2022-25665

Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile

CVE-2022-40519

Information disclosure due to buffer overread in Core

CVE-2024-53012

Memory corruption may occur due to improper input validation in clock device.

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

CVE-2024-43059

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

CVE-2024-45581

Memory corruption while sound model registration for voice activation with audio kernel driver.

CVE-2024-49842

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

CVE-2021-1894

Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CVE-2021-35114

Improper buffer initialization on the backend driver can lead to buffer overflow in Snapdragon Auto

CVE-2022-33218

Memory corruption in Automotive due to improper input validation.

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

CVE-2024-49841

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately checked.

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

CVE-2024-23369

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

CVE-2024-33067

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

CVE-2024-33073

Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.

CVE-2024-53022

Memory corruption may occur during communication between primary and guest VM.

CVE-2024-53023

Memory corruption may occur while accessing a variable during extended back to back tests.

CVE-2024-53031

Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

CVE-2023-43544

Memory corruption when IPC callback handle is used after it has been released during register callback by another thread.

CVE-2024-43060

Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.

CVE-2024-53013

Memory corruption may occur while processing voice call registration with user.

CVE-2024-53028

Memory corruption may occur while processing message from frontend during allocation.

CVE-2024-53029

Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.

CVE-2025-21442

Memory corruption while transmitting packet mapping information with invalid header payload size.

CVE-2023-43538

Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.

CVE-2024-53032

Memory corruption may occur in keyboard virtual device due to guest VM interaction.

CVE-2023-43530

Memory corruption in HLOS while checking for the storage type.

CVE-2024-21462

Transient DOS while loading the TA ELF file.

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or re-initialization.

CVE-2024-38417

Information disclosure while processing IO control commands.

CVE-2024-38418

Memory corruption while parsing the memory map info in IOCTL calls.

CVE-2024-38420

Memory corruption while configuring a Hypervisor based input virtual device.

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

CVE-2024-45584

Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.

CVE-2024-53030

Memory corruption while processing input message passed from FE driver.

CVE-2025-21443

Memory corruption while processing message content in eAVB.

CVE-2024-43061

Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.

CVE-2025-21437

Memory corruption while processing memory map or unmap IOCTL operations simultaneously.

CVE-2024-38414

Information disclosure while processing information on firmware image during core initialization.

CVE-2024-38419

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

CVE-2021-30269

Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Inf...

CVE-2022-40517

Memory corruption in core due to stack-based buffer overflow

CVE-2024-23378

Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.