Wcn3980 Firmware Security Vulnerabilities and Issues — Page 11 of Wcn3980 Firmware CVE List

Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.9AI score0.00087EPSS

CVE•added 2022/12/13 4:15 p.m.•57 views

CVE-2022-25697

Memory corruption in i2c buses due to improper input validation while reading address configuration from i2c driver in Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.8AI score0.00049EPSS

CVE•added 2023/08/08 10:15 a.m.•57 views

CVE-2023-21647

Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.

6.5CVSS6.4AI score0.00203EPSS

CVE•added 2023/08/08 10:15 a.m.•57 views

CVE-2023-21648

Memory corruption in RIL while trying to send apdu packet.

7.8CVSS7.1AI score0.00036EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28565

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•57 views

CVE-2023-33083

Memory corruption in WLAN Host while processing RRM beacon on the AP.

9.8CVSS9.8AI score0.002EPSS

CVE•added 2023/12/05 3:15 a.m.•57 views

CVE-2023-33098

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

7.5CVSS7.6AI score0.00188EPSS

CVE•added 2024/02/06 6:16 a.m.•57 views

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.

7.5CVSS7.5AI score0.00145EPSS

CVE•added 2021/03/17 6:15 a.m.•56 views

CVE-2020-11188

Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wea...

9.1CVSS9.1AI score0.0037EPSS

CVE•added 2021/04/07 8:15 a.m.•56 views

CVE-2020-11245

Unintended reads and writes by NS EL2 in access control driver due to lack of check of input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

8.4CVSS7.7AI score0.00033EPSS

CVE•added 2021/06/09 7:15 a.m.•56 views

CVE-2020-11292

Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Weara...

7.8CVSS7.9AI score0.00048EPSS

CVE•added 2022/12/13 4:15 p.m.•56 views

CVE-2022-25695

Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon ...

8.4CVSS8AI score0.00064EPSS

CVE•added 2022/12/13 4:15 p.m.•56 views

CVE-2022-25702

Denial of service in modem due to reachable assertion while processing reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.5AI score0.00238EPSS

CVE•added 2022/10/19 11:15 a.m.•56 views

CVE-2022-25719

Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & ...

9.1CVSS9AI score0.00108EPSS

CVE•added 2023/09/05 7:15 a.m.•56 views

CVE-2022-40524

Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service.

7.8CVSS7.2AI score0.0002EPSS

CVE•added 2023/07/04 5:15 a.m.•56 views

CVE-2023-21624

Information disclosure in DSP Services while loading dynamic module.

6.2CVSS5.6AI score0.0004EPSS

CVE•added 2023/09/05 7:15 a.m.•56 views

CVE-2023-28557

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.

7.8CVSS7.9AI score0.00045EPSS

CVE•added 2023/12/05 3:15 a.m.•56 views

CVE-2023-28587

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.

7.8CVSS8AI score0.00068EPSS

CVE•added 2023/12/05 3:15 a.m.•56 views

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS8.1AI score0.00068EPSS

CVE•added 2024/07/01 3:15 p.m.•56 views

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

7.8CVSS7.9AI score0.00098EPSS

CVE•added 2024/10/07 1:15 p.m.•56 views

CVE-2024-23375

Memory corruption during the network scan request.

6.7CVSS6.8AI score0.00029EPSS

CVE•added 2024/12/02 11:15 a.m.•56 views

CVE-2024-33044

Memory corruption while Configuring the SMR/S2CR register in Bypass mode.

8.4CVSS8.6AI score0.00033EPSS

CVE•added 2021/04/07 8:15 a.m.•55 views

CVE-2020-11191

Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon ...

9.4CVSS8.9AI score0.00239EPSS

CVE•added 2022/09/02 12:15 p.m.•55 views

CVE-2021-35113

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.3CVSS6.9AI score0.0001EPSS

CVE•added 2022/09/02 12:15 p.m.•55 views

CVE-2022-22062

An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapd...

9.1CVSS8.9AI score0.00199EPSS

CVE•added 2022/09/16 6:15 a.m.•55 views

CVE-2022-22105

Memory corruption in bluetooth due to integer overflow while processing HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music

9.8CVSS9.6AI score0.00322EPSS

CVE•added 2022/11/15 10:15 a.m.•55 views

CVE-2022-33237

Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap...

7.5CVSS7.7AI score0.00165EPSS

CVE•added 2023/01/09 8:15 a.m.•55 views

CVE-2022-33284

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/08/08 10:15 a.m.•55 views

CVE-2023-21627

Memory corruption in Trusted Execution Environment while calling service API with invalid address.

7.8CVSS7.2AI score0.00031EPSS

CVE•added 2023/12/05 3:15 a.m.•55 views

CVE-2023-21634

Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.

7.8CVSS7AI score0.0004EPSS

CVE•added 2023/09/05 7:15 a.m.•55 views

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•55 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2024/06/03 10:15 a.m.•55 views

CVE-2023-43545

Memory corruption when more scan frequency list or channels are sent from the user space.

7.8CVSS6.8AI score0.00027EPSS

CVE•added 2021/05/07 9:15 a.m.•54 views

CVE-2020-11274

Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.5AI score0.00245EPSS

CVE•added 2022/01/13 12:15 p.m.•54 views

CVE-2021-30311

Possible heap overflow due to lack of index validation before allocating and writing to heap buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.9AI score0.00105EPSS

CVE•added 2022/09/16 6:15 a.m.•54 views

CVE-2022-22091

Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.6AI score0.00166EPSS

CVE•added 2023/06/06 8:15 a.m.•54 views

CVE-2022-33226

Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications.

7.8CVSS7.3AI score0.00036EPSS

CVE•added 2023/06/06 8:15 a.m.•54 views

CVE-2022-33230

Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host

7.8CVSS7AI score0.00034EPSS

CVE•added 2022/12/13 4:15 p.m.•54 views

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

7.5CVSS7.6AI score0.00182EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-33253

Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.

7.5CVSS5.9AI score0.00112EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-40518

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in Core

8.4CVSS8.3AI score0.04308EPSS

CVE•added 2023/07/04 5:15 a.m.•54 views

CVE-2023-22667

Memory Corruption in Audio while allocating the ion buffer during the music playback.

8.4CVSS8.1AI score0.00051EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command parameters.

7.8CVSS8AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2021/04/07 8:15 a.m.•53 views

CVE-2020-11210

Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

9.3CVSS8.8AI score0.00039EPSS

CVE•added 2022/09/02 12:15 p.m.•53 views

CVE-2021-35132

Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.8AI score0.00097EPSS

Total number of security vulnerabilities738