Sm7315 Firmware Security Vulnerabilities and Issues — Page 5 of Sm7315 Firmware CVE List

Lucene search

QualcommSm7315 Firmware

349 matches found

CVE•added 2022/12/13 4:15 p.m.•61 views

CVE-2022-33235

Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

8.2CVSS7.7AI score0.00091EPSS

CVE•added 2023/01/09 8:15 a.m.•61 views

CVE-2022-40516

Memory corruption in Core due to stack-based buffer overflow.

8.4CVSS8.1AI score0.04308EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-40523

Information disclosure in Kernel due to indirect branch misprediction.

7.1CVSS5.6AI score0.0004EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-40536

Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.

7.5CVSS7.6AI score0.00108EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/08/08 10:15 a.m.•61 views

CVE-2023-22666

Memory Corruption in Audio while playing amrwbplus clips with modified content.

8.4CVSS7.9AI score0.00053EPSS

CVE•added 2023/10/03 6:15 a.m.•61 views

CVE-2023-28540

Cryptographic issue in Data Modem due to improper authentication during TLS handshake.

9.1CVSS7.8AI score0.00067EPSS

CVE•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•61 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS

CVE•added 2024/01/02 6:15 a.m.•61 views

CVE-2023-33040

Transient DOS in Data Modem during DTLS handshake.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/02/06 6:16 a.m.•61 views

CVE-2023-33067

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.

7.8CVSS7.9AI score0.0002EPSS

CVE•added 2024/04/01 3:15 p.m.•61 views

CVE-2023-33099

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.

7.5CVSS7.6AI score0.00124EPSS

CVE•added 2024/02/06 6:16 a.m.•61 views

CVE-2023-43519

Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.

9.8CVSS9.5AI score0.00107EPSS

CVE•added 2022/09/02 12:15 p.m.•60 views

CVE-2022-25668

Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

9.8CVSS9.5AI score0.00131EPSS

CVE•added 2022/09/16 6:15 a.m.•60 views

CVE-2022-25690

Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Sna...

7.5CVSS7.5AI score0.00225EPSS

CVE•added 2023/03/10 9:15 p.m.•60 views

CVE-2022-25694

Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM

8.4CVSS8AI score0.00067EPSS

CVE•added 2022/11/15 10:15 a.m.•60 views

CVE-2022-33239

Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

7.5CVSS7.6AI score0.00187EPSS

CVE•added 2023/09/05 7:15 a.m.•60 views

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in log.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/11/07 6:15 a.m.•60 views

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

8.4CVSS7.8AI score0.00054EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

8.4CVSS7.8AI score0.0006EPSS

CVE•added 2024/02/06 6:16 a.m.•60 views

CVE-2023-33069

Memory corruption in Audio while processing the calibration data returned from ACDB loader.

7.8CVSS7.8AI score0.0002EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/09/02 12:15 p.m.•60 views

CVE-2024-33045

Memory corruption when BTFM client sends new messages over Slimbus to ADSP.

8.4CVSS8.2AI score0.00039EPSS

CVE•added 2024/11/04 10:15 a.m.•60 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2025/05/06 9:15 a.m.•60 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2022/09/02 12:15 p.m.•59 views

CVE-2022-22070

Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2023/09/05 7:15 a.m.•59 views

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in log.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8CVSS7.9AI score0.00062EPSS

CVE•added 2024/03/04 11:15 a.m.•59 views

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

9.8CVSS7.4AI score0.00106EPSS

CVE•added 2024/05/06 3:15 p.m.•59 views

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.

8.4CVSS7.2AI score0.00082EPSS

CVE•added 2024/09/02 12:15 p.m.•59 views

CVE-2024-33043

Transient DOS while handling PS event when Program Service name length offset value is set to 255.

5.5CVSS5.5AI score0.00036EPSS

CVE•added 2022/09/02 12:15 p.m.•58 views

CVE-2021-35135

A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.2CVSS5.7AI score0.00047EPSS

CVE•added 2023/03/10 9:15 p.m.•58 views

CVE-2022-40527

Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/10/03 6:15 a.m.•58 views

CVE-2023-24850

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

7.8CVSS7.6AI score0.0003EPSS

CVE•added 2023/12/05 3:15 a.m.•58 views

CVE-2023-33054

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.

9.1CVSS9.3AI score0.0013EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33086

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

7.5CVSS7.5AI score0.00143EPSS

CVE•added 2024/06/03 10:15 a.m.•58 views

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00111EPSS

CVE•added 2022/01/13 12:15 p.m.•57 views

CVE-2021-30287

Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.5CVSS7.6AI score0.00359EPSS

CVE•added 2022/09/02 12:15 p.m.•57 views

CVE-2022-22069

Devices with keyprotect off may store unencrypted keybox in RPMB and cause cryptographic issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.8CVSS7.7AI score0.0003EPSS

CVE•added 2022/10/19 11:15 a.m.•57 views

CVE-2022-25660

Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.8AI score0.0008EPSS

CVE•added 2022/12/13 4:15 p.m.•57 views

CVE-2022-25681

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.7AI score0.00079EPSS

CVE•added 2022/10/19 11:15 a.m.•57 views

CVE-2022-25749

Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voi...

7.5CVSS7.7AI score0.00259EPSS

CVE•added 2023/11/07 6:15 a.m.•57 views

CVE-2023-28545

Memory corruption in TZ Secure OS while loading an app ELF.

8.2CVSS8AI score0.0004EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28549

Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.

7.8CVSS8AI score0.00027EPSS

CVE•added 2024/01/02 6:15 a.m.•57 views

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

9.3CVSS7.8AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•57 views

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•57 views

CVE-2023-33095

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.

7.5CVSS7.6AI score0.00188EPSS

CVE•added 2024/01/02 6:15 a.m.•57 views

CVE-2023-33118

Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.

7.8CVSS7.9AI score0.0011EPSS

CVE•added 2022/09/02 12:15 p.m.•56 views

CVE-2021-35122

Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

9.3CVSS7.6AI score0.00046EPSS

CVE•added 2023/06/06 8:15 a.m.•56 views

CVE-2022-22060

Assertion occurs while processing Reconfiguration message due to improper validation

7.5CVSS7.5AI score0.00107EPSS

Total number of security vulnerabilities349