Sd 8 Gen1 5g Firmware Security Vulnerabilities and Issues — Page 4 of Sd 8 Gen1 5g Firmware CVE List

Lucene search

QualcommSd 8 Gen1 5g Firmware

373 matches found

CVE•added 2022/06/14 10:15 a.m.•68 views

CVE-2021-35084

Possible out of bound read due to lack of length check of data length for a DIAG event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

7.1CVSS7.1AI score0.00035EPSS

CVE•added 2022/09/02 12:15 p.m.•68 views

CVE-2022-25659

Memory corruption due to buffer overflow while parsing MKV clips with invalid bitmap size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.7AI score0.00136EPSS

CVE•added 2023/09/05 7:15 a.m.•68 views

CVE-2022-33220

Information disclosure in Automotive multimedia due to buffer over-read.

5.5CVSS5.3AI score0.00019EPSS

CVE•added 2023/03/10 9:15 p.m.•68 views

CVE-2022-40515

Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.

9.8CVSS8AI score0.00071EPSS

CVE•added 2023/10/03 6:15 a.m.•68 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2024/09/02 12:15 p.m.•68 views

CVE-2024-33038

Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2024/09/02 12:15 p.m.•68 views

CVE-2024-33043

Transient DOS while handling PS event when Program Service name length offset value is set to 255.

5.5CVSS5.5AI score0.00036EPSS

CVE•added 2022/06/14 10:15 a.m.•67 views

CVE-2021-35120

Improper handling between export and release functions on the same handle from client can lead to use after free in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

6.7CVSS6.8AI score0.00099EPSS

CVE•added 2022/09/02 12:15 p.m.•67 views

CVE-2022-22067

Potential memory leak in modem during the processing of NSA RRC Reconfiguration with invalid Radio Bearer Config in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

7.8CVSS7.6AI score0.00157EPSS

CVE•added 2022/12/13 4:15 p.m.•67 views

CVE-2022-25672

Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile

7.5CVSS7.5AI score0.0019EPSS

CVE•added 2022/12/13 4:15 p.m.•67 views

CVE-2022-25692

Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.5AI score0.0006EPSS

CVE•added 2022/10/19 11:15 a.m.•67 views

CVE-2022-25748

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdr...

9.8CVSS9.8AI score0.0029EPSS

CVE•added 2023/02/12 4:15 a.m.•67 views

CVE-2022-40502

Transient DOS due to improper input validation in WLAN Host.

7.5CVSS7.5AI score0.00092EPSS

CVE•added 2024/04/01 3:15 p.m.•67 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2024/02/06 6:16 a.m.•67 views

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

7.8CVSS7.8AI score0.00031EPSS

CVE•added 2024/02/06 6:16 a.m.•67 views

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/04/01 3:15 p.m.•67 views

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

9.8CVSS7.4AI score0.00062EPSS

CVE•added 2022/06/14 10:15 a.m.•66 views

CVE-2021-35071

Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastruc...

5.5CVSS5.7AI score0.00109EPSS

CVE•added 2022/06/14 10:15 a.m.•66 views

CVE-2021-35116

APK can load a crafted model into the CDSP which can lead to a compromise of CDSP and other APK`s data executing there in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.7CVSS6.9AI score0.00044EPSS

CVE•added 2022/06/14 10:15 a.m.•66 views

CVE-2021-35126

Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.8AI score0.00111EPSS

CVE•added 2022/11/15 10:15 a.m.•66 views

CVE-2022-25676

Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

6.8CVSS5.7AI score0.00049EPSS

CVE•added 2023/03/10 9:15 p.m.•66 views

CVE-2022-25705

Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response

7.8CVSS8AI score0.0006EPSS

CVE•added 2023/02/12 4:15 a.m.•66 views

CVE-2022-33232

Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.

9.3CVSS8.4AI score0.0006EPSS

CVE•added 2023/03/10 9:15 p.m.•66 views

CVE-2022-33257

Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.

9.3CVSS7.6AI score0.00042EPSS

CVE•added 2023/02/12 4:15 a.m.•66 views

CVE-2022-33277

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•66 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2024/02/06 6:16 a.m.•66 views

CVE-2023-43518

Memory corruption in video while parsing invalid mp2 clip.

9.8CVSS9.5AI score0.00107EPSS

CVE•added 2022/09/02 12:15 p.m.•65 views

CVE-2021-35133

Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

6.7CVSS7.2AI score0.00039EPSS

CVE•added 2022/09/16 6:15 a.m.•65 views

CVE-2022-22093

Memory corruption or temporary denial of service due to improper handling of concurrent hypervisor operations to attach or detach IRQs from virtual interrupt sources in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.1AI score0.0008EPSS

CVE•added 2022/09/02 12:15 p.m.•65 views

CVE-2022-25658

Memory corruption due to incorrect pointer arithmetic when attempting to change the endianness in video parser function in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearab...

9.8CVSS9.4AI score0.00112EPSS

CVE•added 2023/05/02 8:15 a.m.•65 views

CVE-2022-33273

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.

7.3CVSS5.9AI score0.0003EPSS

CVE•added 2023/03/10 9:15 p.m.•65 views

CVE-2022-33278

Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.

7.8CVSS7.9AI score0.00067EPSS

CVE•added 2022/06/14 10:15 a.m.•64 views

CVE-2021-35085

Possible buffer overflow due to lack of buffer length check during management frame Rx handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.1CVSS7.4AI score0.00037EPSS

CVE•added 2022/06/14 10:15 a.m.•64 views

CVE-2021-35092

Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to arbitrary address modification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

6.7CVSS6.8AI score0.00036EPSS

CVE•added 2022/09/02 12:15 p.m.•64 views

CVE-2022-22061

Out of bounds writing is possible while verifying device IDs due to improper length check before copying the data in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

7.8CVSS7.6AI score0.00064EPSS

CVE•added 2023/01/09 8:15 a.m.•64 views

CVE-2022-33283

Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the list.

8.4CVSS8.1AI score0.0301EPSS

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2023-21658

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/09/05 7:15 a.m.•64 views

CVE-2023-21667

Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.

6.5CVSS6.4AI score0.00066EPSS

CVE•added 2024/03/04 11:15 a.m.•64 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00111EPSS

CVE•added 2023/12/05 3:15 a.m.•64 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS

CVE•added 2023/10/03 6:15 a.m.•64 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2022/06/14 10:15 a.m.•63 views

CVE-2021-30340

Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.6AI score0.00228EPSS

CVE•added 2022/10/19 11:15 a.m.•63 views

CVE-2022-25687

memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.7AI score0.00168EPSS

CVE•added 2023/03/10 9:15 p.m.•63 views

CVE-2022-33250

Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/03/10 9:15 p.m.•63 views

CVE-2022-33254

Transient DOS due to reachable assertion in Modem while processing SIB1 Message.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/09/05 7:15 a.m.•63 views

CVE-2023-28538

Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.

8.4CVSS8.1AI score0.0003EPSS

CVE•added 2024/02/06 6:16 a.m.•63 views

CVE-2023-43519

Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.

9.8CVSS9.5AI score0.00107EPSS

CVE•added 2022/09/16 6:15 a.m.•62 views

CVE-2022-22089

Memory corruption in audio while playing record due to improper list handling in two threads in Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.8AI score0.00093EPSS

CVE•added 2022/12/13 4:15 p.m.•62 views

CVE-2022-25698

Memory corruption in SPI buses due to improper input validation while reading address configuration from spi buses in Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.8AI score0.00044EPSS

Total number of security vulnerabilities373