Total
457 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to double free in Core while mapping HLOS address to the list.
|
|||||
| CVE-2022-40503 | 1 Qualcomm | 370 8905, 8905 Firmware, 8909 and 367 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
|
|||||
| CVE-2022-40502 | 1 Qualcomm | 192 Csr8811, Csr8811 Firmware, Ipq5010 and 189 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper input validation in WLAN Host.
|
|||||
| CVE-2022-34146 | 1 Qualcomm | 194 Csr8811, Csr8811 Firmware, Ipq5010 and 191 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.
|
|||||
| CVE-2022-34145 | 1 Qualcomm | 188 Csr8811, Csr8811 Firmware, Ipq5010 and 185 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN Host while parsing frame information.
|
|||||
| CVE-2022-33307 | 1 Qualcomm | 220 Aqt1000, Aqt1000 Firmware, Qam8255p and 217 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
|
|||||
| CVE-2022-33306 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Ar9380 and 259 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
|
|||||
| CVE-2022-33288 | 1 Qualcomm | 256 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 253 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
|
|||||
| CVE-2022-33282 | 1 Qualcomm | 40 Msm8996au, Msm8996au Firmware, Qam8295p and 37 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.
|
|||||
| CVE-2022-33278 | 1 Qualcomm | 246 Aqt1000, Aqt1000 Firmware, Ar8035 and 243 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
|
|||||
| CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
|
|||||
| CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
|
|||||
| CVE-2022-33273 | 1 Qualcomm | 198 Aqt1000, Aqt1000 Firmware, Ar8035 and 195 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.
|
|||||
| CVE-2022-33271 | 1 Qualcomm | 490 Apq8096au, Apq8096au Firmware, Aqt1000 and 487 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
|
|||||
| CVE-2022-33269 | 1 Qualcomm | 202 Aqt1000, Aqt1000 Firmware, Ar8035 and 199 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
|
|||||
| CVE-2022-33260 | 1 Qualcomm | 92 Aqt1000, Aqt1000 Firmware, Qam8295p and 89 more | 2024-11-21 | N/A | 5.9 MEDIUM |
|
Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.
|
|||||
| CVE-2022-33257 | 1 Qualcomm | 280 Aqt1000, Aqt1000 Firmware, Ar8031 and 277 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
|
|||||
| CVE-2022-33243 | 1 Qualcomm | 314 Apq8096au, Apq8096au Firmware, Aqt1000 and 311 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to improper access control in Qualcomm IPC.
|
|||||
| CVE-2022-33242 | 1 Qualcomm | 314 Aqt1000, Aqt1000 Firmware, Ar8031 and 311 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.
|
|||||
| CVE-2022-33232 | 1 Qualcomm | 222 Aqt1000, Aqt1000 Firmware, Ar8035 and 219 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.
|
|||||
| CVE-2022-33231 | 1 Qualcomm | 438 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 435 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to double free in core while initializing the encryption key.
|
|||||
| CVE-2022-33227 | 1 Qualcomm | 142 Aqt1000, Aqt1000 Firmware, Csrb31024 and 139 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in Linux android due to double free while calling unregister provider after register call.
|
|||||
| CVE-2022-33220 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Qam8295p and 87 more | 2024-11-21 | N/A | 5.1 MEDIUM |
|
Information disclosure in Automotive multimedia due to buffer over-read.
|
|||||
| CVE-2022-33216 | 1 Qualcomm | 36 Qam8295p, Qam8295p Firmware, Qca6574a and 33 more | 2024-11-21 | N/A | 6.0 MEDIUM |
|
Transient Denial-of-service in Automotive due to improper input validation while parsing ELF file.
|
|||||
| CVE-2022-25713 | 1 Qualcomm | 110 Ar8035, Ar8035 Firmware, Qam8295p and 107 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.
|
|||||
| CVE-2022-22104 | 1 Qualcomm | 38 Apq8096au, Apq8096au Firmware, Msm8996au and 35 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto
|
|||||
| CVE-2022-22101 | 1 Qualcomm | 34 Apq8096au, Apq8096au Firmware, Qam8295p and 31 more | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Denial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon Auto
|
|||||
| CVE-2022-22100 | 1 Qualcomm | 34 Apq8096au, Apq8096au Firmware, Qam8295p and 31 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto
|
|||||
| CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-11-21 | N/A | 7.1 HIGH |
|
information disclosure due to cryptographic issue in Core during RPMB read request.
|
|||||
| CVE-2022-22075 | 1 Qualcomm | 366 Apq8009, Apq8009 Firmware, Apq8009w and 363 more | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Information Disclosure in Graphics during GPU context switch.
|
|||||
| CVE-2021-35130 | 1 Qualcomm | 114 Ar8035, Ar8035 Firmware, Qam8295p and 111 more | 2024-11-21 | 7.2 HIGH | 8.4 HIGH |
|
Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
|
|||||
| CVE-2021-35126 | 1 Qualcomm | 52 Qam8295p, Qam8295p Firmware, Qca6391 and 49 more | 2024-11-21 | 7.2 HIGH | 8.4 HIGH |
|
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
|
|||||
| CVE-2021-35112 | 1 Qualcomm | 214 Apq8009w, Apq8009w Firmware, Aqt1000 and 211 more | 2024-11-21 | 7.2 HIGH | 8.4 HIGH |
|
A user with user level permission can access graphics protected region due to improper access control in register configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2021-35104 | 1 Qualcomm | 352 Apq8009w, Apq8009w Firmware, Apq8017 and 349 more | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2021-35071 | 1 Qualcomm | 342 Aqt1000, Aqt1000 Firmware, Ar8035 and 339 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2021-30334 | 1 Qualcomm | 262 Apq8009w, Apq8009w Firmware, Aqt1000 and 259 more | 2024-11-21 | 7.2 HIGH | 8.4 HIGH |
|
Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2024-33014 | 1 Qualcomm | 650 315 5g Iot Modem, 315 5g Iot Modem Firmware, 860 Mobile Platform and 647 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing ESP IE from beacon/probe response frame.
|
|||||
| CVE-2024-33015 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Csr8811 and 387 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
|
|||||
| CVE-2024-33025 | 1 Qualcomm | 338 Csr8811, Csr8811 Firmware, Fastconnect 6800 and 335 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
|
|||||
| CVE-2024-33024 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Csr8811 and 359 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
|
|||||