Snapdragon 8 Gen 1 Firmware Security Vulnerabilities and Issues — Snapdragon 8 Gen 1 Firmware CVE List

Lucene search

QualcommSnapdragon 8 Gen 1 Firmware

39 matches found

CVE•added 2023/09/05 7:15 a.m.•104 views

CVE-2023-28581

Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.

9.8CVSS9.8AI score0.00133EPSS

CVE•added 2025/03/03 11:15 a.m.•100 views

CVE-2025-21424

Memory corruption while calling the NPU driver APIs concurrently.

7.8CVSS7.4AI score0.00021EPSS

CVE•added 2023/09/05 7:15 a.m.•83 views

CVE-2023-33021

Memory corruption in Graphics while processing user packets for command submission.

8.4CVSS8.2AI score0.00029EPSS

CVE•added 2023/07/04 5:15 a.m.•82 views

CVE-2023-21631

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.

9.8CVSS8.2AI score0.00074EPSS

CVE•added 2023/07/04 5:15 a.m.•82 views

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2023/07/04 5:15 a.m.•81 views

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2023/07/04 5:15 a.m.•73 views

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/07/04 5:15 a.m.•72 views

CVE-2023-28542

Memory Corruption in WLAN HOST while fetching TX status information.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•72 views

CVE-2023-28584

Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).

7.5CVSS7.5AI score0.00061EPSS

CVE•added 2023/07/04 5:15 a.m.•71 views

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2023/08/08 10:15 a.m.•71 views

CVE-2023-28577

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.

7.8CVSS6.9AI score0.00027EPSS

CVE•added 2023/07/04 5:15 a.m.•70 views

CVE-2023-21672

Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.

8.4CVSS8.1AI score0.00045EPSS

CVE•added 2023/07/04 5:15 a.m.•69 views

CVE-2023-24854

Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2025/03/03 11:15 a.m.•69 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.00073EPSS

CVE•added 2023/07/04 5:15 a.m.•67 views

CVE-2023-21629

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.

6.8CVSS6.6AI score0.00073EPSS

CVE•added 2024/09/02 12:15 p.m.•67 views

CVE-2024-33042

Memory corruption when Alternative Frequency offset value is set to 255.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2023/08/08 10:15 a.m.•65 views

CVE-2023-28575

The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.

7.8CVSS6.9AI score0.00038EPSS

CVE•added 2025/03/03 11:15 a.m.•65 views

CVE-2024-53024

Memory corruption in display driver while detaching a device.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2024/09/02 12:15 p.m.•63 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2025/03/03 11:15 a.m.•63 views

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2024/09/02 12:15 p.m.•61 views

CVE-2024-33045

Memory corruption when BTFM client sends new messages over Slimbus to ADSP.

8.4CVSS8.2AI score0.00039EPSS

CVE•added 2024/09/02 12:15 p.m.•59 views

CVE-2024-33038

Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2023/08/08 10:15 a.m.•58 views

CVE-2023-28576

The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to ou...

7CVSS6.5AI score0.00024EPSS

CVE•added 2023/07/04 5:15 a.m.•55 views

CVE-2023-21640

Memory corruption in Linux when the file upload API is called with parameters having large buffer.

7.8CVSS7AI score0.00029EPSS

CVE•added 2023/07/04 5:15 a.m.•53 views

CVE-2023-21641

An app with non-privileged access can change global system brightness and cause undesired system behavior.

7.8CVSS6.8AI score0.00032EPSS

CVE•added 2023/09/05 7:15 a.m.•53 views

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2023/09/05 7:15 a.m.•52 views

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command parameters.

7.8CVSS8AI score0.00033EPSS

CVE•added 2023/07/04 5:15 a.m.•51 views

CVE-2023-22667

Memory Corruption in Audio while allocating the ion buffer during the music playback.

8.4CVSS8.1AI score0.00051EPSS

CVE•added 2023/07/04 5:15 a.m.•49 views

CVE-2023-21638

Memory corruption in Video while calling APIs with different instance ID than the one received in initialization.

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/09/05 7:15 a.m.•47 views

CVE-2023-33016

Transient DOS in WLAN firmware while parsing MLO (multi-link operation).

7.5CVSS7.6AI score0.00091EPSS

CVE•added 2025/03/03 11:15 a.m.•47 views

CVE-2024-43059

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2024/09/02 12:15 p.m.•45 views

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2025/03/03 11:15 a.m.•44 views

CVE-2024-38426

While processing the authentication message in UE, improper authentication may lead to information disclosure.

5.4CVSS6.9AI score0.00069EPSS

CVE•added 2025/03/03 11:15 a.m.•44 views

CVE-2024-43062

Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00015EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43057

Memory corruption while processing command in Glink linux.

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•35 views

CVE-2024-43055

Memory corruption while processing camera use case IOCTL call.

7.8CVSS7.4AI score0.00021EPSS

CVE•added 2025/03/03 11:15 a.m.•35 views

CVE-2024-43056

Transient DOS during hypervisor virtual I/O operation in a virtual machine.

6.5CVSS7.1AI score0.00021EPSS