Lucene search
K
QualcommSnapdragon Wear 1300 Firmware

25 matches found

CVE
CVE
added 2023/04/04 4:46 a.m.233 views

CVE-2022-33294

CVE-2022-33294 affects Qualcomm modem software where a NULL pointer dereference during processing of an lwm2m registration/update/bootstrap response leads to a transient denial-of-service. The impact is a crash or service disruption on the modem; CVSSv3.1 base score 7.5 (Network, Low attack compl...

7.5CVSS7.5AI score0.00383EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.232 views

CVE-2022-33223

CVE-2022-33223 describes a transient Denial of Service in the Modem caused by a null pointer dereference while processing incoming packets using HTTP chunked encoding. The CVSS v3.1 vector (NETWORK, LOW AC, NONE PR, UI, S=U) yields a base score of 7.5 (HIGH). The vulnerability is associated with ...

7.5CVSS7.5AI score0.00383EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.107 views

CVE-2022-33231

CVE-2022-33231 describes memory corruption due to a double free in the core during initialization of the encryption key. The vulnerability is listed for Qualcomm closed‑source components; multiple CVE trackers (NVD, Red Hat advisory, CVE.org) reflect the same root cause. The Android bulletin indi...

9.3CVSS8.1AI score0.0008EPSS
CVE
CVE
added 2023/07/04 4:46 a.m.97 views

CVE-2023-21631

CVE-2023-21631 describes a weakness in Qualcomm modem firmware due to improper input validation when processing LTE security mode command messages from the network. The vulnerability affects the modem component and can lead to high-impact outcomes (as reflected in CVSS: high/critical with Confide...

9.8CVSS8.2AI score0.00362EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.90 views

CVE-2022-33228

CVE-2022-33228 affects Qualcomm modem chipsets. The vulnerability is an information disclosure caused by a buffer over-read when the modem processes an IPv6 header containing hop-by-hop or destination options. Documented impact is Confidentiality High; other impacts (Integrity, Availability) are ...

8.2CVSS7.7AI score0.00354EPSS
CVE
CVE
added 2024/03/04 10:48 a.m.81 views

CVE-2023-33066

CVE-2023-33066 describes a memory corruption in the Audio component of Qualcomm’s closed‑source stack, triggered while processing the RT proxy port register driver. The issue is linked to an out-of-range pointer offset in Audio (per VulnEnrichment), with Qualcomm’s March 2024 product-security bul...

8.4CVSS8.6AI score0.00111EPSS
CVE
CVE
added 2024/06/03 10:5 a.m.80 views

CVE-2023-43551

The CVE-2023-43551 entry is confirmed in connected sources as a cryptographic/authentication issue occurring during LTE attach, where a rogue base station can skip the authentication phase and immediately issue the Security Mode Command. The vulnerability is attributed to Qualcomm closed‑source c...

9.1CVSS9.4AI score0.00256EPSS
CVE
CVE
added 2024/04/01 3:5 p.m.79 views

CVE-2023-28547

CVE-2023-28547 is a memory corruption issue in the SPS Application when requesting a public key in the sorter Trust Agent (TA), affecting Qualcomm components (including closed-source parts). Root cause described as memory corruption in SPS Application; exposed impact on confidentiality, integrity...

8.4CVSS8.7AI score0.00111EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.76 views

CVE-2022-33222

CVE-2022-33222 is a vulnerability described across multiple sources as an information disclosure caused by a buffer over-read when parsing DNS response packets in a Modem. The effect is a confidentiality impact (high) with no integrity/availability impact per the primary NVD entry, though CVSS ve...

8.2CVSS7.7AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.76 views

CVE-2022-33295

CVE-2022-33295 describes an information-disclosure issue in the Modem caused by a buffer over-read while parsing a wms message. Affected: Modem component; root cause is reading beyond the provided buffer length, impacting confidentiality. No explicit exploited details or fixes are stated in the c...

8.2CVSS7.7AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.74 views

CVE-2022-25730

CVE-2022-25730 affects modem/Qualcomm chipsets due to an improper IP type check while processing DNS server queries, causing information disclosure. Root cause: erroneous handling of IP type in DNS processing. Impact per sources: confidentiality leakage; exploitability is network-based with low c...

8.2CVSS7.6AI score0.00354EPSS
CVE
CVE
added 2023/09/05 6:24 a.m.72 views

CVE-2023-28565

CVE-2023-28565 affects Qualcomm WLAN HAL (Qualcomm chipsets) through WMI command streams. Root cause according to enrichment: improper validation of an array index leading to memory corruption in WLAN HAL. The issue is described in multiple sources (e.g., Qualcomm/Red Hat advisories; vuln enrichm...

7.8CVSS8AI score0.0011EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.69 views

CVE-2022-25678

CVE-2022-25678 relates to memory corruption in Qualcomm modem chipsets caused by a buffer overwrite during a CoAP connection. The vulnerability’s root cause is a buffer overwrite in the modem, with impact described as memory correction. Affects Qualcomm chipsets’ modems; CVSS v3.1 base score 9.8 ...

9.8CVSS9.6AI score0.00417EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.69 views

CVE-2022-25739

The CVE-2022-25739 entry describes a Denial of Service in a modem due to a missing null check when processing an IPv6 packet during an ECM call. Multiple sources (NVD, Red Hat, CNNVD, PRION, etc.) associate this with Qualcomm chipsets/modems, with a CVSS v3.1 base score of 7.5 (Network, Low/No Pr...

7.5CVSS7.5AI score0.00383EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.68 views

CVE-2022-25740

CVE-2022-25740 affects Qualcomm modem firmware/chipsets. The issue is described as memory corruption caused by a buffer overwrite when building an IPv6 multicast address from the interface MAC. CVSS 3.1 base score 9.8 (Network, Low attack complexity, No privileges, No user interaction; impact to ...

9.8CVSS9.8AI score0.00417EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.66 views

CVE-2022-25726

CVE-2022-25726 concerns information disclosure in Qualcomm modem data due to an array out-of-bounds access while handling the incoming DNS response packet. Affected component is Qualcomm chipsets/controllers with modem functionality; root cause described as improper bounds/length handling during ...

8.2CVSS7.6AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.65 views

CVE-2022-25731

CVE-2022-25731 concerns information disclosure in a modem component due to a buffer over-read while processing DNS server packets. The connected sources indicate the issue affects Qualcomm modem/chipset implementations (root cause described as incorrect buffer size calculation in the MODEM). Impa...

7.5CVSS7.5AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.64 views

CVE-2022-25737

CVE-2022-25737 affects the modem component and is caused by a missing NULL check when reading packets from the local network, leading to information disclosure with High confidentiality impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Multiple connected sources (NVD, Red Hat, PRION, CNNVD...

7.5CVSS7.3AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.64 views

CVE-2022-33258

CVE-2022-33258 affects Qualcomm modem firmware; the vulnerability is an information disclosure caused by a buffer over-read when reading configuration parameters in the modem. Documented in multiple sources as a buffer over-read leading to leakage of data; exploitation status is not detailed in t...

8.2CVSS7.7AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.63 views

CVE-2022-33211

CVE-2022-33211 affects Qualcomm modem/chipset components. Root cause: memory corruption due to an improper check when calculating the size of a serialized CoAP message. CVSS v3.1 base score 9.8 (CRITICAL) with network attack vector, no privileges required, no user interaction, and high impact on ...

9.8CVSS9.7AI score0.00417EPSS
CVE
CVE
added 2025/03/03 10:7 a.m.63 views

CVE-2024-38426

CVE-2024-38426 involves Qualcomm chipsets with a vulnerability in the UE authentication processing that can lead to information disclosure. The issue is described as improper authentication during the authentication message handling, affecting Qualcomm modem/closed-source components and potential...

5.4CVSS6.9AI score0.00249EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.62 views

CVE-2022-25747

CVE-2022-25747 affects Qualcomm modem chipsets. The vulnerability is caused by improper input validation during parsing of upcoming CoAP messages, leading to information disclosure. Reported impact indicates high confidentiality impact (C:H/I:N/A:N) with network attack vector and low attack compl...

8.2CVSS7.6AI score0.00354EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.62 views

CVE-2022-33259

CVE-2022-33259 relates to memory corruption caused by a buffer copy without input size validation in a modem when decoding raw SMS. The vulnerability is described across multiple sources as affecting Qualcomm chipsets/modems, with a CVSS v3.1 base score of 9.8 (NETWORK, LOW complexity, no privile...

9.8CVSS9.8AI score0.00417EPSS
CVE
CVE
added 2023/04/04 4:46 a.m.61 views

CVE-2022-25745

CVE-2022-25745 describes memory corruption in a modem caused by improper input validation when handling incoming CoAP messages. The CVE is associated with Qualcomm chipsets/modem firmware; CVSS v3.1 metrics indicate a critical impact (CVSS 9.8, NETWORK attack vector, no privileges or user interac...

9.8CVSS9.7AI score0.00417EPSS
CVE
CVE
added 2024/06/03 10:5 a.m.56 views

CVE-2023-43542

CVE-2023-43542 describes a memory corruption in the Trusted Execution Environment from copying a keyblob’s material when the key material size isn’t properly checked. Documented details indicate a high-severity impact (C/H/I/H/A/H) with local attacker access and no user interaction required, per ...

7.8CVSS7.8AI score0.00103EPSS