Snapdragon 8 Gen 3 Mobile Firmware@- Security Vulnerabilities and Issues — Snapdragon 8 Gen 3 Mobile Firmware@- CVE List

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

7.8CVSS8AI score0.00017EPSS

CVE•added 2025/02/03 5:15 p.m.•72 views

CVE-2024-49843

Memory corruption while processing IOCTL from user space to handle GPU AHB bus error.

7.8CVSS7.8AI score0.00024EPSS

CVE•added 2025/05/06 9:15 a.m.•72 views

CVE-2025-21459

Transient DOS while parsing per STA profile in ML IE.

7.5CVSS7.6AI score0.00071EPSS

CVE•added 2025/02/03 5:15 p.m.•69 views

CVE-2024-49833

Memory corruption can occur in the camera when an invalid CID is used.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•68 views

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•68 views

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•67 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00053EPSS

CVE•added 2025/02/03 5:15 p.m.•67 views

CVE-2024-49839

Memory corruption during management frame processing due to mismatch in T2LM info element.

9.8CVSS8.4AI score0.00072EPSS

CVE•added 2025/02/03 5:15 p.m.•66 views

CVE-2024-45582

Memory corruption while validating number of devices in Camera kernel .

7.8CVSS7.8AI score0.00024EPSS

CVE•added 2025/05/06 9:15 a.m.•66 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2025/01/06 11:15 a.m.•63 views

CVE-2024-45553

Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•63 views

CVE-2024-49832

Memory corruption in Camera due to unusually high number of nodes passed to AXI port.

7.8CVSS7.8AI score0.00024EPSS

CVE•added 2025/05/06 9:15 a.m.•60 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2025/05/06 9:15 a.m.•52 views

CVE-2024-49845

Memory corruption during the FRS UDS generation process.

7.8CVSS7.9AI score0.00026EPSS

CVE•added 2025/05/06 9:15 a.m.•52 views

CVE-2024-49847

Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE.

7.5CVSS7.5AI score0.00055EPSS

CVE•added 2025/05/06 9:15 a.m.•48 views

CVE-2024-49844

Memory corruption while triggering commands in the PlayReady Trusted application.

7.8CVSS8AI score0.00026EPSS

CVE•added 2025/01/06 11:15 a.m.•47 views

CVE-2024-33041

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,

7.8CVSS6.8AI score0.00019EPSS

CVE•added 2025/01/06 11:15 a.m.•47 views

CVE-2024-33059

Memory corruption while processing frame command IOCTL calls.

7.8CVSS6.9AI score0.00019EPSS

CVE•added 2025/02/03 5:15 p.m.•47 views

CVE-2024-38411

Memory corruption while registering a buffer from user-space to kernel-space using IOCTL calls.

7.8CVSS6.8AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•45 views

CVE-2024-38413

Memory corruption while processing frame packets.

7.8CVSS6.8AI score0.00035EPSS

CVE•added 2025/05/06 9:15 a.m.•45 views

CVE-2024-49842

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

7.8CVSS7.8AI score0.00016EPSS

CVE•added 2025/01/06 11:15 a.m.•44 views

CVE-2024-33055

Memory corruption while invoking IOCTL calls to unmap the DMA buffers.

7.8CVSS6.8AI score0.00019EPSS

CVE•added 2025/05/06 9:15 a.m.•44 views

CVE-2024-49841

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2025/02/03 5:15 p.m.•43 views

CVE-2024-38412

Memory corruption while invoking IOCTL calls from user-space to kernel-space to handle session errors.

7.8CVSS6.7AI score0.00023EPSS

CVE•added 2025/02/03 5:15 p.m.•42 views

CVE-2024-38404

Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.

7.5CVSS7.6AI score0.00074EPSS

CVE•added 2025/02/03 5:15 p.m.•42 views

CVE-2024-38420

Memory corruption while configuring a Hypervisor based input virtual device.

8.8CVSS8.9AI score0.00036EPSS

CVE•added 2025/02/03 5:15 p.m.•42 views

CVE-2024-45584

Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/05/06 9:15 a.m.•38 views

CVE-2024-45583

Memory corruption while handling multiple IOCTL calls from userspace to operate DMA operations.

7.8CVSS6.7AI score0.00017EPSS

CVE•added 2025/07/08 1:15 p.m.•9 views

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

7.8CVSS6.6AI score0.0001EPSS

CVE•added 2025/07/08 1:15 p.m.•9 views

CVE-2025-21450

Cryptographic issue occurs due to use of insecure connection method while downloading.

9.1CVSS6.6AI score0.00031EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21454

Transient DOS while processing received beacon frame.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2024-53009

Memory corruption while operating the mailbox in Automotive.

7.8CVSS6.8AI score0.00012EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21427

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

8.2CVSS6.5AI score0.00043EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21446

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

7.5CVSS6.4AI score0.00063EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21449

Transient DOS may occur while processing malformed length field in SSID IEs.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27042

Memory corruption while processing video packets received from video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27043

Memory corruption while processing manipulated payload in video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27052

Memory corruption while processing data packets in diag received from Unix clients.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27056

Memory corruption during sub-system restart while processing clean-up to free up resources.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27057

Transient DOS while handling beacon frames with invalid IE header length.

7.5CVSS6.6AI score0.00048EPSS