Snapdragon 678 Mobile Platform Firmware Security Vulnerabilities and Issues — Snapdragon 678 Mobile Platform Firmware CVE List

Lucene search

QualcommSnapdragon 678 Mobile Platform Firmware

25 matches found

CVE•added 2024/02/06 6:16 a.m.•92 views

CVE-2023-43513

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

7.8CVSS7.7AI score0.00053EPSS

CVE•added 2024/01/02 6:15 a.m.•90 views

CVE-2023-33120

Memory corruption in Audio when memory map command is executed consecutively in ADSP.

7.8CVSS7.9AI score0.00136EPSS

CVE•added 2023/12/05 3:15 a.m.•88 views

CVE-2023-28588

Transient DOS in Bluetooth Host while rfc slot allocation.

7.5CVSS7.5AI score0.00435EPSS

CVE•added 2024/01/02 6:15 a.m.•80 views

CVE-2023-33110

The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.

7.8CVSS6.8AI score0.00085EPSS

CVE•added 2023/11/07 6:15 a.m.•69 views

CVE-2023-28556

Cryptographic issue in HLOS during key management.

7.8CVSS7.2AI score0.00045EPSS

CVE•added 2024/01/02 6:15 a.m.•69 views

CVE-2023-33036

Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.

7.1CVSS5.5AI score0.00049EPSS

CVE•added 2023/09/05 7:15 a.m.•68 views

CVE-2023-28544

Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/02/06 6:16 a.m.•68 views

CVE-2023-43533

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2024/02/06 6:16 a.m.•67 views

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

7.8CVSS7.8AI score0.00031EPSS

CVE•added 2024/02/06 6:16 a.m.•65 views

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/01/02 6:15 a.m.•64 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2024/11/04 10:15 a.m.•64 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2024/01/02 6:15 a.m.•61 views

CVE-2023-33040

Transient DOS in Data Modem during DTLS handshake.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/11/04 10:15 a.m.•59 views

CVE-2024-38423

Memory corruption while processing GPU page table switch.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28558

Memory corruption in WLAN handler while processing PhyID in Tx status handler.

7.8CVSS7.9AI score0.0003EPSS

CVE•added 2024/01/02 6:15 a.m.•57 views

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2023/12/05 3:15 a.m.•56 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•55 views

CVE-2023-28557

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.

7.8CVSS7.9AI score0.00045EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

7.8CVSS8AI score0.00053EPSS

CVE•added 2024/02/06 6:16 a.m.•54 views

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.

7.5CVSS7.5AI score0.00145EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•48 views

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

7.8CVSS8AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•47 views

CVE-2023-33038

Memory corruption while receiving a message in Bus Socket Transport Server.

7.8CVSS7.7AI score0.00042EPSS

CVE•added 2024/08/05 3:15 p.m.•41 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS