Sm8635 Firmware@- Security Vulnerabilities and Issues — Sm8635 Firmware@- CVE List

Lucene search

QualcommSm8635 Firmware-

28 matches found

CVE•added 2024/12/02 11:15 a.m.•92 views

CVE-2024-43048

Memory corruption when invalid input is passed to invoke GPU Headroom API call.

7.8CVSS7.9AI score0.00027EPSS

CVE•added 2024/09/02 12:15 p.m.•86 views

CVE-2024-38402

Memory corruption while processing IOCTL call for getting group info.

7.8CVSS7.9AI score0.0005EPSS

CVE•added 2024/12/02 11:15 a.m.•85 views

CVE-2024-33063

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.

7.5CVSS7.6AI score0.00115EPSS

CVE•added 2024/12/02 11:15 a.m.•85 views

CVE-2024-43052

Memory corruption while processing API calls to NPU with invalid input.

7.8CVSS7.8AI score0.00041EPSS

CVE•added 2024/09/02 12:15 p.m.•69 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS

CVE•added 2024/11/04 10:15 a.m.•68 views

CVE-2024-38415

Memory corruption while handling session errors from firmware.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/09/02 12:15 p.m.•67 views

CVE-2024-33042

Memory corruption when Alternative Frequency offset value is set to 255.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2024/09/02 12:15 p.m.•65 views

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

7.8CVSS8AI score0.00039EPSS

CVE•added 2024/09/02 12:15 p.m.•64 views

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2024/09/02 12:15 p.m.•63 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2024/09/02 12:15 p.m.•61 views

CVE-2024-33045

Memory corruption when BTFM client sends new messages over Slimbus to ADSP.

8.4CVSS8.2AI score0.00039EPSS

CVE•added 2024/09/02 12:15 p.m.•61 views

CVE-2024-33057

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

7.5CVSS7.5AI score0.00264EPSS

CVE•added 2024/11/04 10:15 a.m.•61 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/09/02 12:15 p.m.•60 views

CVE-2024-33043

Transient DOS while handling PS event when Program Service name length offset value is set to 255.

5.5CVSS5.5AI score0.00036EPSS

CVE•added 2024/09/02 12:15 p.m.•59 views

CVE-2024-33038

Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2024/09/02 12:15 p.m.•59 views

CVE-2024-33054

Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine.

7.8CVSS7.9AI score0.00082EPSS

CVE•added 2024/11/04 10:15 a.m.•59 views

CVE-2024-38421

Memory corruption while processing GPU commands.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/11/04 10:15 a.m.•52 views

CVE-2024-38405

Transient DOS while processing the CU information from RNR IE.

7.5CVSS6.8AI score0.00134EPSS

CVE•added 2024/12/02 11:15 a.m.•46 views

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

8.4CVSS8.6AI score0.00027EPSS

CVE•added 2024/09/02 12:15 p.m.•45 views

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2024/10/07 1:15 p.m.•43 views

CVE-2024-23369

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2024/11/04 10:15 a.m.•40 views

CVE-2024-38419

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/11/04 10:15 a.m.•39 views

CVE-2024-23385

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

7.5CVSS7AI score0.00056EPSS

CVE•added 2024/10/07 1:15 p.m.•39 views

CVE-2024-38425

Information disclosure while sending implicit broadcast containing APP launch information.

6.1CVSS6.2AI score0.00021EPSS

CVE•added 2024/11/04 10:15 a.m.•37 views

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

9.1CVSS9AI score0.00062EPSS

CVE•added 2024/11/04 10:15 a.m.•36 views

CVE-2024-38424

Memory corruption during GNSS HAL process initialization.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/11/04 10:15 a.m.•34 views

CVE-2024-33068

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7AI score0.00174EPSS

CVE•added 2024/11/04 10:15 a.m.•34 views

CVE-2024-38403

Transient DOS while parsing BTM ML IE when per STA profile is not included.

7.5CVSS7AI score0.00174EPSS