Vulnerabilities (CVE)

Filtered by CWE-416
Total 4064 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-33074 1 Qualcomm 120 Qam8255p, Qam8255p Firmware, Qam8295p and 117 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Audio when SSR event is triggered after music playback is stopped.
CVE-2023-33039 1 Qualcomm 42 Qam8295p, Qam8295p Firmware, Qam8650p and 39 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.
CVE-2023-33029 1 Qualcomm 264 Apq8009, Apq8009 Firmware, Ar8035 and 261 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in DSP Service during a remote call from HLOS to DSP.
CVE-2023-33021 1 Qualcomm 336 Apq8064au, Apq8064au Firmware, Aqt1000 and 333 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Graphics while processing user packets for command submission.
CVE-2023-28577 1 Qualcomm 62 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 59 more 2024-04-12 N/A 7.8 HIGH
In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.
CVE-2023-21672 1 Qualcomm 114 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 111 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.
CVE-2022-33298 1 Qualcomm 154 Aqt1000, Aqt1000 Firmware, Qca6310 and 151 more 2024-04-12 N/A 7.8 HIGH
Memory corruption due to use after free in Modem while modem initialization.
CVE-2022-33292 1 Qualcomm 16 Sg4150p, Sg4150p Firmware, Sm6225 and 13 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Qualcomm IPC due to use after free while receiving the incoming packet and reposting it.
CVE-2022-33263 1 Qualcomm 98 Aqt1000, Aqt1000 Firmware, Qam8255p and 95 more 2024-04-12 N/A 7.8 HIGH
Memory corruption due to use after free in Core when multiple DCI clients register and deregister.
CVE-2022-33245 1 Qualcomm 144 Apq8064au, Apq8064au Firmware, Apq8096au and 141 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in WLAN due to use after free
CVE-2022-33225 1 Qualcomm 58 Apq8096au, Apq8096au Firmware, Mdm9628 and 55 more 2024-04-12 N/A 7.8 HIGH
Memory corruption due to use after free in trusted application environment.
CVE-2024-30386 2024-04-12 N/A 5.3 MEDIUM
A Use-After-Free vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause l2ald to crash leading to a Denial-of-Service (DoS). In an EVPN-VXLAN scenario, when state updates are received and processed by the affected system, the correct order of some processing steps is not ensured, which can lead to an l2ald crash and restart. Whether the crash occurs depends on system internal timing which is outside the attackers control. This issue affects: Junos OS:  * All versions before 20.4R3-S8, * 21.2 versions before 21.2R3-S6, * 21.3 versions before 21.3R3-S5, * 21.4 versions before 21.4R3-S4, * 22.1 versions before 22.1R3-S3, * 22.2 versions before 22.2R3-S1, * 22.3 versions before 22.3R3,, * 22.4 versions before 22.4R2; Junos OS Evolved:  * All versions before 20.4R3-S8-EVO, * 21.2-EVO versions before 21.2R3-S6-EVO,  * 21.3-EVO versions before 21.3R3-S5-EVO, * 21.4-EVO versions before 21.4R3-S4-EVO, * 22.1-EVO versions before 22.1R3-S3-EVO, * 22.2-EVO versions before 22.2R3-S1-EVO, * 22.3-EVO versions before 22.3R3-EVO, * 22.4-EVO versions before 22.4R2-EVO.
CVE-2023-43514 1 Qualcomm 166 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 163 more 2024-04-12 N/A 7.8 HIGH
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
CVE-2023-33120 1 Qualcomm 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
CVE-2023-33118 1 Qualcomm 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more 2024-04-12 N/A 7.8 HIGH
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.
CVE-2023-33117 1 Qualcomm 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more 2024-04-12 N/A 7.8 HIGH
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2024-04-12 N/A 7.8 HIGH
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2023-33108 1 Qualcomm 52 Qam8255p, Qam8255p Firmware, Qam8295p and 49 more 2024-04-12 N/A 7.8 HIGH
Memory corruption in Graphics Driver when destroying a context with KGSL_GPU_AUX_COMMAND_TIMELINE objects queued.
CVE-2023-33106 1 Qualcomm 306 Ar8035, Ar8035 Firmware, Csra6620 and 303 more 2024-04-12 N/A 7.8 HIGH
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
CVE-2023-33094 1 Qualcomm 250 Ar8035, Ar8035 Firmware, Csra6620 and 247 more 2024-04-12 N/A 7.8 HIGH
Memory corruption while running VK synchronization with KASAN enabled.