Wcd9360 Firmware@- Security Vulnerabilities and Issues — Wcd9360 Firmware@- CVE List

Lucene search

QualcommWcd9360 Firmware-

44 matches found

CVE•added 2024/02/06 6:16 a.m.•88 views

CVE-2023-43513

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

7.8CVSS7.7AI score0.00053EPSS

CVE•added 2024/04/01 3:15 p.m.•87 views

CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

8.4CVSS8.6AI score0.00044EPSS

CVE•added 2024/01/02 6:15 a.m.•85 views

CVE-2023-33120

Memory corruption in Audio when memory map command is executed consecutively in ADSP.

7.8CVSS7.9AI score0.00136EPSS

CVE•added 2024/01/02 6:15 a.m.•76 views

CVE-2023-33110

The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.

7.8CVSS6.8AI score0.00085EPSS

CVE•added 2024/02/06 6:15 a.m.•70 views

CVE-2023-33049

Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.

7.5CVSS7.5AI score0.00092EPSS

CVE•added 2024/02/06 6:16 a.m.•70 views

CVE-2023-33072

Memory corruption in Core while processing control functions.

9.3CVSS7.8AI score0.00029EPSS

CVE•added 2024/05/06 3:15 p.m.•69 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00082EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2024/02/06 6:16 a.m.•68 views

CVE-2023-43533

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2024/09/02 12:15 p.m.•68 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS

CVE•added 2024/02/06 6:15 a.m.•66 views

CVE-2023-33057

Transient DOS in Multi-Mode Call Processor while processing UE policy container.

7.5CVSS7.5AI score0.00096EPSS

CVE•added 2024/04/01 3:15 p.m.•66 views

CVE-2023-33101

Transient DOS while processing DL NAS TRANSPORT message with payload length 0.

7.5CVSS7.6AI score0.00107EPSS

CVE•added 2024/04/01 3:15 p.m.•65 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2024/02/06 6:16 a.m.•65 views

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/01/02 6:15 a.m.•64 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2024/03/04 11:15 a.m.•63 views

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

8.4CVSS8.6AI score0.00051EPSS

CVE•added 2024/03/04 11:15 a.m.•62 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00082EPSS

CVE•added 2024/01/02 6:15 a.m.•62 views

CVE-2023-33085

Memory corruption in wearables while processing data from AON.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•61 views

CVE-2023-33040

Transient DOS in Data Modem during DTLS handshake.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/04/01 3:15 p.m.•61 views

CVE-2023-33099

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.

7.5CVSS7.6AI score0.00124EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

8.4CVSS7.8AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/11/04 10:15 a.m.•60 views

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33086

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

7.5CVSS7.5AI score0.00143EPSS

CVE•added 2024/06/03 10:15 a.m.•58 views

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00111EPSS

CVE•added 2024/01/02 6:15 a.m.•57 views

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

9.3CVSS7.8AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•57 views

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•57 views

CVE-2023-33095

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.