Total
74 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-21659 | 1 Qualcomm | 540 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 537 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing frames with missing header fields.
|
|||||
| CVE-2023-21658 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Ar9380 and 299 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
|
|||||
| CVE-2023-21657 | 1 Qualcomm | 252 Csra6620, Csra6620 Firmware, Csra6640 and 249 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memoru corruption in Audio when ADSP sends input during record use case.
|
|||||
| CVE-2023-21656 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Csra6620 and 253 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
|
|||||
| CVE-2023-21630 | 1 Qualcomm | 84 Qca6391, Qca6391 Firmware, Qca6574 and 81 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.
|
|||||
| CVE-2022-40536 | 1 Qualcomm | 162 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 159 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.
|
|||||
| CVE-2022-40533 | 1 Qualcomm | 220 Csra6620, Csra6620 Firmware, Csra6640 and 217 more | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
|
|||||
| CVE-2022-40532 | 1 Qualcomm | 706 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 703 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
|
|||||
| CVE-2022-40529 | 1 Qualcomm | 392 Aqt1000, Aqt1000 Firmware, Ar8031 and 389 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Memory corruption due to improper access control in kernel while processing a mapping request from root process.
|
|||||
| CVE-2022-40523 | 1 Qualcomm | 370 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 367 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Information disclosure in Kernel due to indirect branch misprediction.
|
|||||
| CVE-2022-40521 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 481 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper authorization in Modem
|
|||||
| CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to double free in Core while mapping HLOS address to the list.
|
|||||
| CVE-2022-40504 | 1 Qualcomm | 378 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 375 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
|
|||||
| CVE-2022-40503 | 1 Qualcomm | 370 8905, 8905 Firmware, 8909 and 367 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
|
|||||
| CVE-2022-34144 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 133 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
|
|||||
| CVE-2022-33307 | 1 Qualcomm | 220 Aqt1000, Aqt1000 Firmware, Qam8255p and 217 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
|
|||||
| CVE-2022-33305 | 1 Qualcomm | 162 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 159 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
|
|||||
| CVE-2022-33303 | 1 Qualcomm | 42 Qca6574au, Qca6574au Firmware, Qca6595au and 39 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager message queue.
|
|||||
| CVE-2022-33302 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 447 more | 2024-11-21 | N/A | 6.8 MEDIUM |
|
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
|
|||||
| CVE-2022-33289 | 1 Qualcomm | 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 7wcn785x-1 and 449 more | 2024-11-21 | N/A | 6.8 MEDIUM |
|
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
|
|||||
| CVE-2022-33288 | 1 Qualcomm | 256 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 253 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
|
|||||
| CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
|
|||||
| CVE-2022-33273 | 1 Qualcomm | 198 Aqt1000, Aqt1000 Firmware, Ar8035 and 195 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.
|
|||||
| CVE-2022-33270 | 1 Qualcomm | 84 Ar8035, Ar8035 Firmware, Qca6391 and 81 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.
|
|||||
| CVE-2022-33269 | 1 Qualcomm | 202 Aqt1000, Aqt1000 Firmware, Ar8035 and 199 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
|
|||||
| CVE-2022-33264 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 481 more | 2024-11-21 | N/A | 7.9 HIGH |
|
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
|
|||||
| CVE-2022-33263 | 1 Qualcomm | 98 Aqt1000, Aqt1000 Firmware, Qam8255p and 95 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption due to use after free in Core when multiple DCI clients register and deregister.
|
|||||
| CVE-2022-33251 | 1 Qualcomm | 148 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 145 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
|
|||||
| CVE-2022-33231 | 1 Qualcomm | 438 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 435 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to double free in core while initializing the encryption key.
|
|||||
| CVE-2022-33226 | 1 Qualcomm | 66 Aqt1000, Aqt1000 Firmware, Qam8255p and 63 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications.
|
|||||
| CVE-2022-33224 | 1 Qualcomm | 92 Aqt1000, Aqt1000 Firmware, Qam8255p and 89 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl queries.
|
|||||
| CVE-2022-25713 | 1 Qualcomm | 110 Ar8035, Ar8035 Firmware, Qam8295p and 107 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.
|
|||||
| CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-11-21 | N/A | 7.1 HIGH |
|
information disclosure due to cryptographic issue in Core during RPMB read request.
|
|||||
| CVE-2022-22060 | 1 Qualcomm | 148 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 145 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Assertion occurs while processing Reconfiguration message due to improper validation
|
|||||