61 matches found
CVE-2021-1950
Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CVE-2022-33248
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
CVE-2022-33302
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
CVE-2023-33115
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2022-33233
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
CVE-2023-33049
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.
CVE-2023-33036
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.
CVE-2023-33044
Transient DOS in Data modem while handling TLB control messages from the Network.
CVE-2022-25692
Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2022-40521
Transient DOS due to improper authorization in Modem
CVE-2023-33076
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
CVE-2022-25705
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
CVE-2022-33305
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
CVE-2023-33043
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.
CVE-2023-33057
Transient DOS in Multi-Mode Call Processor while processing UE policy container.
CVE-2023-33101
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.
CVE-2022-33273
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.
CVE-2023-24847
Transient DOS in Modem while allocating DSM items.
CVE-2022-40504
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
CVE-2022-33250
Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.
CVE-2022-33254
Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
CVE-2022-34144
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
CVE-2022-33264
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
CVE-2022-33272
Transient DOS in modem due to reachable assertion.
CVE-2022-40508
Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
CVE-2022-22076
information disclosure due to cryptographic issue in Core during RPMB read request.
CVE-2022-33244
Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
CVE-2022-40523
Information disclosure in Kernel due to indirect branch misprediction.
CVE-2022-40536
Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.
CVE-2023-33040
Transient DOS in Data Modem during DTLS handshake.
CVE-2023-33099
Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.
CVE-2023-21662
Memory corruption in Core Platform while printing the response buffer in log.
CVE-2023-21664
Memory Corruption in Core Platform while printing the response buffer in log.
CVE-2023-33018
Memory corruption while using the UIM diag command to get the operators name.
CVE-2022-25660
Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2023-33095
Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.
CVE-2022-22060
Assertion occurs while processing Reconfiguration message due to improper validation
CVE-2022-33251
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
CVE-2022-33270
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.
CVE-2023-28550
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
CVE-2024-21465
Memory corruption while processing key blob passed by the user.
CVE-2023-33096
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
CVE-2023-33104
Transient DOS while processing PDU Release command with a parameter PDU ID out of range.
CVE-2023-33042
Transient DOS in Modem after RRC Setup message is received.
CVE-2022-25685
Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2024-21469
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
CVE-2021-30279
Possible access control violation while setting current permission for VMIDs due to improper permission masking in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CVE-2022-25665
Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile
CVE-2023-28551
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
CVE-2023-33038
Memory corruption while receiving a message in Bus Socket Transport Server.