Sm4350-ac Firmware Security Vulnerabilities and Issues — Sm4350-ac Firmware CVE List

Lucene search

QualcommSm4350-ac Firmware

44 matches found

CVE•added 2023/04/13 7:15 a.m.•335 views

CVE-2022-33298

Memory corruption due to use after free in Modem while modem initialization.

7.8CVSS7.1AI score0.00028EPSS

CVE•added 2023/12/05 3:15 a.m.•282 views

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

7.8CVSS8.1AI score0.00227EPSS

CVE•added 2023/06/06 8:15 a.m.•104 views

CVE-2023-21657

Memoru corruption in Audio when ADSP sends input during record use case.

7.8CVSS7.8AI score0.00054EPSS

CVE•added 2023/06/06 8:15 a.m.•100 views

CVE-2023-21670

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2023/06/06 8:15 a.m.•96 views

CVE-2023-21656

Memory corruption in WLAN HOST while receiving an WMI event from firmware.

7.8CVSS7.9AI score0.00053EPSS

CVE•added 2023/06/06 8:15 a.m.•82 views

CVE-2022-40529

Memory corruption due to improper access control in kernel while processing a mapping request from root process.

7.8CVSS7.3AI score0.00033EPSS

CVE•added 2023/12/05 3:15 a.m.•81 views

CVE-2023-33079

Memory corruption in Audio while running invalid audio recording from ADSP.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/11/07 6:15 a.m.•80 views

CVE-2023-33059

Memory corruption in Audio while processing the VOC packet data from ADSP.

7.8CVSS7.8AI score0.00062EPSS

CVE•added 2023/11/07 6:15 a.m.•78 views

CVE-2023-33031

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.

7.8CVSS7.9AI score0.00062EPSS

CVE•added 2023/08/08 10:15 a.m.•77 views

CVE-2023-28555

Transient DOS in Audio while remapping channel buffer in media codec decoding.

7.5CVSS7.7AI score0.00123EPSS

CVE•added 2023/11/07 6:15 a.m.•77 views

CVE-2023-33055

Memory Corruption in Audio while invoking callback function in driver from ADSP.

7.8CVSS7.7AI score0.00062EPSS

CVE•added 2023/10/03 6:15 a.m.•76 views

CVE-2023-33034

Memory corruption while parsing the ADSP response command.

7.8CVSS7.9AI score0.00059EPSS

CVE•added 2023/04/13 7:15 a.m.•75 views

CVE-2022-33302

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

7.8CVSS7.3AI score0.00033EPSS

CVE•added 2023/10/03 6:15 a.m.•75 views

CVE-2023-33035

Memory corruption while invoking callback function of AFE from ADSP.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/10/03 6:15 a.m.•69 views

CVE-2023-24843

Transient DOS in Modem while triggering a camping on an 5G cell.

7.5CVSS7.5AI score0.00087EPSS

CVE•added 2024/07/01 3:15 p.m.•69 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/04/13 7:15 a.m.•68 views

CVE-2022-33296

Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.

7.8CVSS6.7AI score0.00042EPSS

CVE•added 2023/12/05 3:15 a.m.•68 views

CVE-2023-33044

Transient DOS in Data modem while handling TLB control messages from the Network.

7.5CVSS7.5AI score0.00187EPSS

CVE•added 2023/06/06 8:15 a.m.•67 views

CVE-2022-40521

Transient DOS due to improper authorization in Modem

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2023/05/02 6:15 a.m.•66 views

CVE-2022-33305

Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2023/10/03 6:15 a.m.•66 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2023/12/05 3:15 a.m.•66 views

CVE-2023-33043

Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.

7.5CVSS7.5AI score0.00187EPSS

CVE•added 2023/10/03 6:15 a.m.•65 views

CVE-2023-24847

Transient DOS in Modem while allocating DSM items.

7.5CVSS7.5AI score0.00178EPSS

CVE•added 2023/05/02 8:15 a.m.•64 views

CVE-2022-40504

Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/05/02 6:15 a.m.•63 views

CVE-2022-34144

Transient DOS due to reachable assertion in Modem during OSI decode scheduling.

7.5CVSS7.5AI score0.00161EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

7.9CVSS8.1AI score0.00094EPSS

CVE•added 2023/05/02 6:15 a.m.•62 views

CVE-2022-40508

Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00071EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-40523

Information disclosure in Kernel due to indirect branch misprediction.

7.1CVSS5.6AI score0.0004EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-40536

Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.

7.5CVSS7.6AI score0.00108EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8CVSS7.9AI score0.00062EPSS

CVE•added 2023/10/03 6:15 a.m.•58 views

CVE-2023-24850

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

7.8CVSS7.6AI score0.0003EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28560

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2023/06/06 8:15 a.m.•56 views

CVE-2022-22060

Assertion occurs while processing Reconfiguration message due to improper validation

7.5CVSS7.5AI score0.00107EPSS

CVE•added 2023/06/06 8:15 a.m.•56 views

CVE-2022-33251

Transient DOS due to reachable assertion in Modem because of invalid network configuration.

7.5CVSS7.5AI score0.00145EPSS

CVE•added 2023/04/13 7:15 a.m.•56 views

CVE-2022-33270

Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.

7.5CVSS6AI score0.00081EPSS

CVE•added 2024/07/01 3:15 p.m.•55 views

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2022-33230

Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33042

Transient DOS in Modem after RRC Setup message is received.

7.5CVSS7.6AI score0.00187EPSS

CVE•added 2024/07/01 3:15 p.m.•50 views

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

7.8CVSS7.4AI score0.00033EPSS

CVE•added 2023/12/05 3:15 a.m.•46 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2024/07/01 3:15 p.m.•42 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00033EPSS