Total
129 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-33278 | 1 Qualcomm | 246 Aqt1000, Aqt1000 Firmware, Ar8035 and 243 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. | |||||
CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. | |||||
CVE-2022-33242 | 1 Qualcomm | 314 Aqt1000, Aqt1000 Firmware, Ar8031 and 311 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD. | |||||
CVE-2022-33231 | 1 Qualcomm | 438 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 435 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to double free in core while initializing the encryption key. | |||||
CVE-2022-25713 | 1 Qualcomm | 110 Ar8035, Ar8035 Firmware, Qam8295p and 107 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key. | |||||
CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-04-12 | N/A | 5.5 MEDIUM |
information disclosure due to cryptographic issue in Core during RPMB read request. | |||||
CVE-2022-22075 | 1 Qualcomm | 366 Apq8009, Apq8009 Firmware, Apq8009w and 363 more | 2024-04-12 | N/A | 5.5 MEDIUM |
Information Disclosure in Graphics during GPU context switch. | |||||
CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while parse fils IE with length equal to 1. | |||||
CVE-2023-43519 | 1 Qualcomm | 268 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 265 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size. | |||||
CVE-2023-43518 | 1 Qualcomm | 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption in video while parsing invalid mp2 clip. | |||||
CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | |||||
CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | |||||
CVE-2023-33120 | 1 Qualcomm | 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in Audio when memory map command is executed consecutively in ADSP. | |||||
CVE-2023-33118 | 1 Qualcomm | 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. | |||||
CVE-2023-33117 | 1 Qualcomm | 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. | |||||
CVE-2023-33114 | 1 Qualcomm | 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. | |||||
CVE-2023-33113 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. | |||||
CVE-2023-33112 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. | |||||
CVE-2023-33109 | 1 Qualcomm | 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 617 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host. | |||||
CVE-2023-33098 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while parsing WPA IES, when it is passed with length more than expected size. |