Vulnerabilities (CVE)

Filtered by vendor Qualcomm Subscribe
Filtered by product Qcm2290 Firmware
Total 361 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-30334 1 Qualcomm 262 Apq8009w, Apq8009w Firmware, Aqt1000 and 259 more 2024-02-28 7.2 HIGH 7.8 HIGH
Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-30339 1 Qualcomm 110 Ar8035, Ar8035 Firmware, Qca6391 and 107 more 2024-02-28 4.9 MEDIUM 5.5 MEDIUM
Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-30344 1 Qualcomm 294 Apq8009w, Apq8009w Firmware, Apq8017 and 291 more 2024-02-28 7.8 HIGH 7.5 HIGH
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35071 1 Qualcomm 342 Aqt1000, Aqt1000 Firmware, Ar8035 and 339 more 2024-02-28 2.1 LOW 5.5 MEDIUM
Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-35106 1 Qualcomm 224 Aqt1000, Aqt1000 Firmware, Ar8031 and 221 more 2024-02-28 7.2 HIGH 7.8 HIGH
Possible out of bound read due to improper length calculation of WMI message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2022-22057 1 Qualcomm 160 Apq8053, Apq8053 Firmware, Ar8035 and 157 more 2024-02-28 7.2 HIGH 7.8 HIGH
Use after free in graphics fence due to a race condition while closing fence file descriptor and destroy graphics timeline simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2021-30331 1 Qualcomm 154 Ar8035, Ar8035 Firmware, Fsm10055 and 151 more 2024-02-28 2.1 LOW 5.5 MEDIUM
Possible buffer overflow due to improper data validation of external commands sent via DIAG interface in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2021-35083 1 Qualcomm 347 Apq8009, Apq8009 Firmware, Apq8009w and 344 more 2024-02-28 9.4 HIGH 9.1 CRITICAL
Possible out of bound read due to improper validation of certificate chain in SSL or Internet key exchange in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2022-22071 1 Qualcomm 180 Apq8053, Apq8053 Firmware, Ar8031 and 177 more 2024-02-28 7.2 HIGH 7.8 HIGH
Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CVE-2021-30342 1 Qualcomm 190 Apq8009w, Apq8009w Firmware, Apq8017 and 187 more 2024-02-28 7.1 HIGH 5.9 MEDIUM
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35094 1 Qualcomm 162 Aqt1000, Aqt1000 Firmware, Qca6390 and 159 more 2024-02-28 7.2 HIGH 7.8 HIGH
Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-30317 1 Qualcomm 228 Aqt1000, Aqt1000 Firmware, Ar8031 and 225 more 2024-02-28 7.2 HIGH 7.8 HIGH
Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CVE-2021-35117 1 Qualcomm 204 Apq8096au, Apq8096au Firmware, Aqt1000 and 201 more 2024-02-28 9.4 HIGH 9.1 CRITICAL
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CVE-2021-30341 1 Qualcomm 240 Apq8009w, Apq8009w Firmware, Apq8096au and 237 more 2024-02-28 10.0 HIGH 9.8 CRITICAL
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
CVE-2021-35120 1 Qualcomm 199 Apq8053, Apq8053 Firmware, Aqt1000 and 196 more 2024-02-28 4.6 MEDIUM 6.7 MEDIUM
Improper handling between export and release functions on the same handle from client can lead to use after free in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2022-22065 1 Qualcomm 334 Apq8009, Apq8009 Firmware, Apq8009w and 331 more 2024-02-28 7.8 HIGH 7.5 HIGH
Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-30345 1 Qualcomm 56 Ar8035, Ar8035 Firmware, Qca9984 and 53 more 2024-02-28 4.9 MEDIUM 5.5 MEDIUM
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-35078 1 Qualcomm 214 Aqt1000, Aqt1000 Firmware, Ar8035 and 211 more 2024-02-28 7.8 HIGH 7.5 HIGH
Possible memory leak due to improper validation of certificate chain length while parsing server certificate chain in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2022-22083 1 Qualcomm 301 Apq8009, Apq8009 Firmware, Apq8009w and 298 more 2024-02-28 7.8 HIGH 7.5 HIGH
Denial of service due to memory corruption while extracting ape header from clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35100 1 Qualcomm 240 Apq8009w, Apq8009w Firmware, Apq8017 and 237 more 2024-02-28 7.8 HIGH 7.5 HIGH
Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables