Total
184 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-33284 | 1 Qualcomm | 352 Aqt1000, Aqt1000 Firmware, Ar8035 and 349 more | 2025-04-09 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
|
|||||
| CVE-2022-33283 | 1 Qualcomm | 268 Ar8035, Ar8035 Firmware, Ar9380 and 265 more | 2025-04-09 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
|
|||||
| CVE-2023-22666 | 1 Qualcomm | 344 Apq8009, Apq8009 Firmware, Apq8017 and 341 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption in Audio while playing amrwbplus clips with modified content.
|
|||||
| CVE-2023-21664 | 1 Qualcomm | 274 Aqt1000, Aqt1000 Firmware, Ar8035 and 271 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory Corruption in Core Platform while printing the response buffer in log.
|
|||||
| CVE-2023-21662 | 1 Qualcomm | 272 Aqt1000, Aqt1000 Firmware, Ar8035 and 269 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in Core Platform while printing the response buffer in log.
|
|||||
| CVE-2023-21653 | 1 Qualcomm | 20 Ar8035, Ar8035 Firmware, Qca8081 and 17 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in Modem while processing RRC reconfiguration message.
|
|||||
| CVE-2023-21652 | 1 Qualcomm | 240 Aqt1000, Aqt1000 Firmware, Ar8035 and 237 more | 2024-11-21 | N/A | 7.7 HIGH |
|
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
|
|||||
| CVE-2023-21651 | 1 Qualcomm | 280 Aqt1000, Aqt1000 Firmware, Ar8031 and 277 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
|
|||||
| CVE-2023-21646 | 1 Qualcomm | 108 Ar8035, Ar8035 Firmware, Qca6390 and 105 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in Modem while processing invalid System Information Block 1.
|
|||||
| CVE-2023-21626 | 1 Qualcomm | 370 Apq8009, Apq8009 Firmware, Apq8017 and 367 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
|
|||||
| CVE-2022-40535 | 1 Qualcomm | 142 Csr8811, Csr8811 Firmware, Ipq8070a and 139 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while sending a packet to device.
|
|||||
| CVE-2022-40531 | 1 Qualcomm | 568 Apq8009, Apq8009 Firmware, Apq8017 and 565 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
|
|||||
| CVE-2022-40530 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8031 and 375 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
|
|||||
| CVE-2022-40527 | 1 Qualcomm | 198 Ar8035, Ar8035 Firmware, Csr8811 and 195 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
|
|||||
| CVE-2022-40514 | 1 Qualcomm | 456 Aqt1000, Aqt1000 Firmware, Ar8031 and 453 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
|
|||||
| CVE-2022-40512 | 1 Qualcomm | 590 Apq8009, Apq8009 Firmware, Apq8017 and 587 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
|
|||||
| CVE-2022-40510 | 1 Qualcomm | 408 Apq8009, Apq8009 Firmware, Apq8009w and 405 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
|
|||||
| CVE-2022-33309 | 1 Qualcomm | 130 Csr8811, Csr8811 Firmware, Ipq5010 and 127 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
|
|||||
| CVE-2022-33306 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Ar9380 and 259 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
|
|||||
| CVE-2022-33280 | 1 Qualcomm | 124 Apq8096au, Apq8096au Firmware, Ar8031 and 121 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.
|
|||||
| CVE-2022-33278 | 1 Qualcomm | 246 Aqt1000, Aqt1000 Firmware, Ar8035 and 243 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
|
|||||
| CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
|
|||||
| CVE-2022-33272 | 1 Qualcomm | 98 Ar8035, Ar8035 Firmware, Qca6390 and 95 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in modem due to reachable assertion.
|
|||||
| CVE-2022-33271 | 1 Qualcomm | 490 Apq8096au, Apq8096au Firmware, Aqt1000 and 487 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
|
|||||
| CVE-2022-33257 | 1 Qualcomm | 280 Aqt1000, Aqt1000 Firmware, Ar8031 and 277 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
|
|||||
| CVE-2022-33256 | 1 Qualcomm | 130 Ar8035, Ar8035 Firmware, Qca6390 and 127 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption due to improper validation of array index in Multi-mode call processor.
|
|||||
| CVE-2022-33254 | 1 Qualcomm | 128 Aqt1000, Aqt1000 Firmware, Ar8035 and 125 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
|
|||||
| CVE-2022-33250 | 1 Qualcomm | 130 Ar8035, Ar8035 Firmware, Qca6390 and 127 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.
|
|||||
| CVE-2022-33248 | 1 Qualcomm | 324 Apq8009, Apq8009 Firmware, Apq8009w and 321 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
|
|||||
| CVE-2022-33244 | 1 Qualcomm | 78 Ar8035, Ar8035 Firmware, Qca6391 and 75 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
|
|||||
| CVE-2022-33233 | 1 Qualcomm | 402 Apq8009, Apq8009 Firmware, Apq8009w and 399 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
|
|||||
| CVE-2022-33232 | 1 Qualcomm | 222 Aqt1000, Aqt1000 Firmware, Ar8035 and 219 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.
|
|||||
| CVE-2022-33213 | 1 Qualcomm | 418 Apq8009, Apq8009 Firmware, Apq8009w and 415 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Memory corruption in modem due to buffer overflow while processing a PPP packet
|
|||||
| CVE-2022-25709 | 1 Qualcomm | 136 Ar8035, Ar8035 Firmware, Qca6174a and 133 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in modem due to use of out of range pointer offset while processing qmi msg
|
|||||
| CVE-2022-25705 | 1 Qualcomm | 402 Apq8009, Apq8009 Firmware, Apq8009w and 399 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
|
|||||
| CVE-2022-25694 | 1 Qualcomm | 416 Apq8009, Apq8009 Firmware, Apq8009w and 413 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
|
|||||
| CVE-2022-25690 | 1 Qualcomm | 304 Apq8096au, Apq8096au Firmware, Aqt1000 and 301 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
|
|||||
| CVE-2022-25670 | 1 Qualcomm | 251 Apq8009, Apq8009 Firmware, Apq8009w and 248 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Denial of service in WLAN HOST due to buffer over read while unpacking frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-25656 | 1 Qualcomm | 129 Ar8035, Ar8035 Firmware, Qca6174a and 126 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Possible integer overflow and memory corruption due to improper validation of buffer size sent to write to console when computing the payload size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
|
|||||
| CVE-2022-22092 | 1 Qualcomm | 105 Ar8035, Ar8035 Firmware, Qca6390 and 102 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in kernel due to use after free issue in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
|
|||||