Total
454 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-33033 | 1 Qualcomm | 528 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 525 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Audio during playback with speaker protection.
|
|||||
| CVE-2023-33030 | 1 Qualcomm | 596 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 593 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption in HLOS while running playready use-case.
|
|||||
| CVE-2023-33024 | 1 Qualcomm | 142 8098, 8098 Firmware, 8998 and 139 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption while sending SMS from AP firmware.
|
|||||
| CVE-2023-33021 | 1 Qualcomm | 336 Apq8064au, Apq8064au Firmware, Aqt1000 and 333 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics while processing user packets for command submission.
|
|||||
| CVE-2023-33020 | 1 Qualcomm | 164 205, 205 Firmware, 215 and 161 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
|
|||||
| CVE-2023-33019 | 1 Qualcomm | 164 205, 205 Firmware, 215 and 161 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
|
|||||
| CVE-2023-28583 | 1 Qualcomm | 60 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 57 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption when IPv6 prefix timer object`s lifetime expires which are created while Netmgr daemon gets an IPv6 address.
|
|||||
| CVE-2023-28577 | 1 Qualcomm | 62 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 59 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.
|
|||||
| CVE-2023-28576 | 1 Qualcomm | 62 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 59 more | 2024-11-21 | N/A | 6.4 MEDIUM |
|
The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to out-of-bounds read/write issues.
|
|||||
| CVE-2023-28575 | 1 Qualcomm | 120 205, 205 Firmware, 215 and 117 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.
|
|||||
| CVE-2023-28565 | 1 Qualcomm | 588 9205 Lte, 9205 Lte Firmware, Apq8017 and 585 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
|
|||||
| CVE-2023-28560 | 1 Qualcomm | 534 8098, 8098 Firmware, 8998 and 531 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
|
|||||
| CVE-2023-28540 | 1 Qualcomm | 304 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 301 more | 2024-11-21 | N/A | 9.1 CRITICAL |
|
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
|
|||||
| CVE-2023-28537 | 1 Qualcomm | 366 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 363 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while allocating memory in COmxApeDec module in Audio.
|
|||||
| CVE-2023-22666 | 1 Qualcomm | 344 Apq8009, Apq8009 Firmware, Apq8017 and 341 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption in Audio while playing amrwbplus clips with modified content.
|
|||||
| CVE-2023-21670 | 1 Qualcomm | 364 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 361 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
|
|||||
| CVE-2023-21667 | 1 Qualcomm | 86 Qca6390, Qca6390 Firmware, Qca6391 and 83 more | 2024-11-21 | N/A | 6.5 MEDIUM |
|
Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
|
|||||
| CVE-2023-21666 | 1 Qualcomm | 330 8905, 8905 Firmware, 8909 and 327 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
|
|||||
| CVE-2023-21665 | 1 Qualcomm | 440 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 437 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics while importing a file.
|
|||||
| CVE-2023-21663 | 1 Qualcomm | 76 Aqt1000, Aqt1000 Firmware, Qca6420 and 73 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory Corruption while accessing metadata in Display.
|
|||||
| CVE-2023-21657 | 1 Qualcomm | 252 Csra6620, Csra6620 Firmware, Csra6640 and 249 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memoru corruption in Audio when ADSP sends input during record use case.
|
|||||
| CVE-2023-21655 | 1 Qualcomm | 62 Qca6391, Qca6391 Firmware, Qca6574au and 59 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in Audio while validating and mapping metadata.
|
|||||
| CVE-2023-21654 | 1 Qualcomm | 112 Apq8096au, Apq8096au Firmware, Aqt1000 and 109 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in Audio during playback session with audio effects enabled.
|
|||||
| CVE-2023-21650 | 1 Qualcomm | 102 Aqt1000, Aqt1000 Firmware, Csrb31024 and 99 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.
|
|||||
| CVE-2023-21649 | 1 Qualcomm | 130 Apq8096au, Apq8096au Firmware, Aqt1000 and 127 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
|
|||||
| CVE-2023-21648 | 1 Qualcomm | 68 Aqt1000, Aqt1000 Firmware, Qca6391 and 65 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in RIL while trying to send apdu packet.
|
|||||
| CVE-2023-21647 | 1 Qualcomm | 86 Qca6390, Qca6390 Firmware, Qca6391 and 83 more | 2024-11-21 | N/A | 6.5 MEDIUM |
|
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
|
|||||
| CVE-2023-21644 | 1 Qualcomm | 102 Aqt1000, Aqt1000 Firmware, Qca6390 and 99 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.
|
|||||
| CVE-2023-21637 | 1 Qualcomm | 110 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 107 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in Linux while calling system configuration APIs.
|
|||||
| CVE-2023-21636 | 1 Qualcomm | 102 Aqt1000, Aqt1000 Firmware, Qca6390 and 99 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory Corruption due to improper validation of array index in Linux while updating adn record.
|
|||||
| CVE-2023-21635 | 1 Qualcomm | 98 Aqt1000, Aqt1000 Firmware, Csrb31024 and 95 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony.
|
|||||
| CVE-2023-21634 | 1 Qualcomm | 102 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 99 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.
|
|||||
| CVE-2023-21628 | 1 Qualcomm | 566 Apq8017, Apq8017 Firmware, Apq8064au and 563 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
|
|||||
| CVE-2023-21627 | 1 Qualcomm | 96 Aqt1000, Aqt1000 Firmware, Qca6390 and 93 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption in Trusted Execution Environment while calling service API with invalid address.
|
|||||
| CVE-2023-21626 | 1 Qualcomm | 370 Apq8009, Apq8009 Firmware, Apq8017 and 367 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
|
|||||
| CVE-2023-21625 | 1 Qualcomm | 92 Apq8009, Apq8009 Firmware, Apq8017 and 89 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure in Network Services due to buffer over-read while the device receives DNS response.
|
|||||
| CVE-2023-21624 | 1 Qualcomm | 134 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6800 and 131 more | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Information disclosure in DSP Services while loading dynamic module.
|
|||||
| CVE-2022-40537 | 1 Qualcomm | 324 Apq8009, Apq8009 Firmware, Apq8009w and 321 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
|
|||||
| CVE-2022-40532 | 1 Qualcomm | 706 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 703 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
|
|||||
| CVE-2022-40531 | 1 Qualcomm | 568 Apq8009, Apq8009 Firmware, Apq8017 and 565 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
|
|||||