Snapdragon X5 Lte Modem Firmware Security Vulnerabilities and Issues — Snapdragon X5 Lte Modem Firmware CVE List

Lucene search

QualcommSnapdragon X5 Lte Modem Firmware

29 matches found

CVE•added 2023/04/13 7:15 a.m.•219 views

CVE-2022-33223

Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2023/04/13 7:15 a.m.•219 views

CVE-2022-33294

Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2024/01/02 6:15 a.m.•87 views

CVE-2023-33120

Memory corruption in Audio when memory map command is executed consecutively in ADSP.

7.8CVSS7.9AI score0.00136EPSS

CVE•added 2023/11/07 6:15 a.m.•82 views

CVE-2023-33059

Memory corruption in Audio while processing the VOC packet data from ADSP.

7.8CVSS7.8AI score0.00062EPSS

CVE•added 2023/11/07 6:15 a.m.•80 views

CVE-2023-33031

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.

7.8CVSS7.9AI score0.00062EPSS

CVE•added 2024/01/02 6:15 a.m.•78 views

CVE-2023-33110

The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.

7.8CVSS6.8AI score0.00085EPSS

CVE•added 2023/04/13 7:15 a.m.•75 views

CVE-2022-33302

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

7.8CVSS7.3AI score0.00033EPSS

CVE•added 2023/04/13 7:15 a.m.•68 views

CVE-2022-33296

Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.

7.8CVSS6.7AI score0.00042EPSS

CVE•added 2023/06/06 8:15 a.m.•67 views

CVE-2022-40521

Transient DOS due to improper authorization in Modem

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2024/02/06 6:16 a.m.•64 views

CVE-2023-33068

Memory corruption in Audio while processing IIR config data from AFE calibration block.

7.8CVSS7.8AI score0.0002EPSS

CVE•added 2024/01/02 6:15 a.m.•64 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

7.9CVSS8.1AI score0.00094EPSS

CVE•added 2024/11/04 10:15 a.m.•62 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00071EPSS

CVE•added 2024/02/06 6:16 a.m.•61 views

CVE-2023-33067

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.

7.8CVSS7.9AI score0.0002EPSS

CVE•added 2024/02/06 6:16 a.m.•60 views

CVE-2023-33069

Memory corruption in Audio while processing the calibration data returned from ACDB loader.

7.8CVSS7.8AI score0.0002EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8CVSS7.9AI score0.00062EPSS

CVE•added 2023/05/02 6:15 a.m.•58 views

CVE-2022-33304

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2024/11/04 10:15 a.m.•57 views

CVE-2024-38423

Memory corruption while processing GPU page table switch.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2023/12/05 3:15 a.m.•56 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/04/13 7:15 a.m.•55 views

CVE-2022-25739

Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/04/13 7:15 a.m.•54 views

CVE-2022-25731

Information disclosure in modem due to buffer over-read while processing packets from DNS server

7.5CVSS7.5AI score0.0013EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/04/13 7:15 a.m.•51 views

CVE-2022-25737

Information disclosure in modem due to missing NULL check while reading packets received from local network

7.5CVSS7.3AI score0.00146EPSS

CVE•added 2023/12/05 3:15 a.m.•48 views

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

7.8CVSS8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•46 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2024/08/05 3:15 p.m.•13 views

CVE-2024-23353

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

7.5CVSS7.5AI score0.00161EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21454

Transient DOS while processing received beacon frame.

7.5CVSS6.6AI score0.00048EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21449

Transient DOS may occur while processing malformed length field in SSID IEs.

7.5CVSS6.6AI score0.00048EPSS