Sm6370 Firmware Security Vulnerabilities and Issues — Sm6370 Firmware CVE List | Vulners.com

Lucene search

K

QualcommSm6370 Firmware

47 matches found

CVE•added 2025/03/03 11:15 a.m.•98 views

CVE-2025-21424

Memory corruption while calling the NPU driver APIs concurrently.

7.8CVSS7.4AI score0.00021EPSS

CVE•added 2024/04/01 3:15 p.m.•86 views

CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

8.4CVSS8.6AI score0.00044EPSS

CVE•added 2024/09/02 12:15 p.m.•84 views

CVE-2024-38402

Memory corruption while processing IOCTL call for getting group info.

7.8CVSS7.9AI score0.0005EPSS

CVE•added 2024/07/01 3:15 p.m.•76 views

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

8.4CVSS8.3AI score0.00039EPSS

CVE•added 2025/05/06 9:15 a.m.•73 views

CVE-2025-21468

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

7.8CVSS8AI score0.00017EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2024/05/06 3:15 p.m.•68 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00082EPSS

CVE•added 2024/07/01 3:15 p.m.•68 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/09/02 12:15 p.m.•67 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS

CVE•added 2025/03/03 11:15 a.m.•67 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.00073EPSS

CVE•added 2024/11/04 10:15 a.m.•66 views

CVE-2024-38415

Memory corruption while handling session errors from firmware.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2025/02/03 5:15 p.m.•66 views

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/04/01 3:15 p.m.•65 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2025/05/06 9:15 a.m.•64 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2025/03/03 11:15 a.m.•63 views

CVE-2024-53024

Memory corruption in display driver while detaching a device.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2024/09/02 12:15 p.m.•61 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2025/03/03 11:15 a.m.•61 views

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2025/05/06 9:15 a.m.•60 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2024/09/02 12:15 p.m.•59 views

CVE-2024-33045

Memory corruption when BTFM client sends new messages over Slimbus to ADSP.

8.4CVSS8.2AI score0.00039EPSS

CVE•added 2024/11/04 10:15 a.m.•59 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/05/06 3:15 p.m.•58 views

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.

8.4CVSS7.2AI score0.00082EPSS

CVE•added 2024/07/01 3:15 p.m.•55 views

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/04 10:15 a.m.•53 views

CVE-2024-38423

Memory corruption while processing GPU page table switch.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/07/01 3:15 p.m.•50 views

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

7.8CVSS7.4AI score0.00033EPSS

CVE•added 2024/12/02 11:15 a.m.•46 views

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

8.4CVSS8.6AI score0.00027EPSS

CVE•added 2024/07/01 3:15 p.m.•45 views

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4CVSS8.3AI score0.00035EPSS

CVE•added 2024/09/02 12:15 p.m.•45 views

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2024/07/01 3:15 p.m.•42 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00033EPSS

CVE•added 2024/11/04 10:15 a.m.•39 views

CVE-2024-23385

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

7.5CVSS7AI score0.00056EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00015EPSS

CVE•added 2024/08/05 3:15 p.m.•38 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•37 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/11/04 10:15 a.m.•37 views

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

9.1CVSS9AI score0.00062EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•35 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•34 views

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2024/08/05 3:15 p.m.•22 views

CVE-2024-23357

Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.

6.2CVSS6.4AI score0.00033EPSS

CVE•added 2024/08/05 3:15 p.m.•17 views

CVE-2024-23356

Memory corruption during session sign renewal request calls in HLOS.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21450

Cryptographic issue occurs due to use of insecure connection method while downloading.

9.1CVSS6.6AI score0.00031EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21454

Transient DOS while processing received beacon frame.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21427

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

8.2CVSS6.5AI score0.00043EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21449

Transient DOS may occur while processing malformed length field in SSID IEs.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-27042

Memory corruption while processing video packets received from video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-27043

Memory corruption while processing manipulated payload in video firmware.

7.8CVSS6.8AI score0.00013EPSS