Snapdragon 4 Gen 2 Mobile Firmware@- Security Vulnerabilities and Issues — Snapdragon 4 Gen 2 Mobile Firmware@- CVE List

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

7.8CVSS8AI score0.00017EPSS

CVE•added 2024/05/06 3:15 p.m.•72 views

CVE-2024-23354

Memory corruption when the IOCTL call is interrupted by a signal.

8.4CVSS7.1AI score0.00134EPSS

CVE•added 2024/04/01 3:15 p.m.•70 views

CVE-2023-33100

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification.

7.5CVSS7.5AI score0.00124EPSS

CVE•added 2024/05/06 3:15 p.m.•69 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00082EPSS

CVE•added 2024/05/06 3:15 p.m.•69 views

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.

8.4CVSS7.1AI score0.00084EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2024/09/02 12:15 p.m.•68 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS

CVE•added 2025/02/03 5:15 p.m.•68 views

CVE-2024-49833

Memory corruption can occur in the camera when an invalid CID is used.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/04/01 3:15 p.m.•67 views

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

9.8CVSS7.4AI score0.00062EPSS

CVE•added 2025/02/03 5:15 p.m.•67 views

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/04/01 3:15 p.m.•66 views

CVE-2023-33101

Transient DOS while processing DL NAS TRANSPORT message with payload length 0.

7.5CVSS7.6AI score0.00107EPSS

CVE•added 2025/02/03 5:15 p.m.•66 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00053EPSS

CVE•added 2024/04/01 3:15 p.m.•65 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2025/05/06 9:15 a.m.•65 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2024/09/02 12:15 p.m.•64 views

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

7.8CVSS8AI score0.00039EPSS

CVE•added 2024/03/04 11:15 a.m.•63 views

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

8.4CVSS8.6AI score0.00051EPSS

CVE•added 2024/03/04 11:15 a.m.•62 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00082EPSS

CVE•added 2025/01/06 11:15 a.m.•62 views

CVE-2024-45553

Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/04/01 3:15 p.m.•61 views

CVE-2023-33099

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.

7.5CVSS7.6AI score0.00124EPSS

CVE•added 2024/03/04 11:15 a.m.•59 views

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

9.8CVSS7.4AI score0.00106EPSS

CVE•added 2024/05/06 3:15 p.m.•59 views

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.

8.4CVSS7.2AI score0.00082EPSS

CVE•added 2024/03/04 11:15 a.m.•57 views

CVE-2023-33095

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.

7.5CVSS7.6AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•57 views

CVE-2023-33103

Transient DOS while processing CAG info IE received from NW.

7.5CVSS7.6AI score0.00144EPSS

CVE•added 2024/03/04 11:15 a.m.•56 views

CVE-2023-33084

Transient DOS while processing IE fragments from server during DTLS handshake.

7.5CVSS7.6AI score0.00187EPSS

CVE•added 2024/03/04 11:15 a.m.•54 views

CVE-2023-33096

Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•54 views

CVE-2023-33104

Transient DOS while processing PDU Release command with a parameter PDU ID out of range.

7.5CVSS7.7AI score0.00144EPSS

CVE•added 2024/06/03 10:15 a.m.•54 views

CVE-2023-43556

Memory corruption in Hypervisor when platform information mentioned is not aligned.

9.3CVSS9.4AI score0.00048EPSS

CVE•added 2024/05/06 3:15 p.m.•48 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2024/06/03 10:15 a.m.•43 views

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately checked.

7.8CVSS7.8AI score0.00048EPSS

CVE•added 2024/05/06 3:15 p.m.•42 views

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

8.4CVSS7.1AI score0.00045EPSS

CVE•added 2024/06/03 10:15 a.m.•29 views

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section length.

8.2CVSS8.1AI score0.00093EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

7.8CVSS6.6AI score0.0001EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21454

Transient DOS while processing received beacon frame.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21427

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

8.2CVSS6.5AI score0.00043EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21449

Transient DOS may occur while processing malformed length field in SSID IEs.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-27042

Memory corruption while processing video packets received from video firmware.

7.8CVSS6.8AI score0.00013EPSS