Total
541 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-40527 | 1 Qualcomm | 198 Ar8035, Ar8035 Firmware, Csr8811 and 195 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM. | |||||
CVE-2022-40523 | 1 Qualcomm | 370 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 367 more | 2024-04-12 | N/A | 5.5 MEDIUM |
Information disclosure in Kernel due to indirect branch misprediction. | |||||
CVE-2022-40521 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 481 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to improper authorization in Modem | |||||
CVE-2022-40514 | 1 Qualcomm | 456 Aqt1000, Aqt1000 Firmware, Ar8031 and 453 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. | |||||
CVE-2022-40512 | 1 Qualcomm | 590 Apq8009, Apq8009 Firmware, Apq8017 and 587 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. | |||||
CVE-2022-40510 | 1 Qualcomm | 408 Apq8009, Apq8009 Firmware, Apq8009w and 405 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. | |||||
CVE-2022-40508 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 133 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported. | |||||
CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to double free in Core while mapping HLOS address to the list. | |||||
CVE-2022-40504 | 1 Qualcomm | 378 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 375 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | |||||
CVE-2022-34144 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 133 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to reachable assertion in Modem during OSI decode scheduling. | |||||
CVE-2022-33306 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Ar9380 and 259 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs. | |||||
CVE-2022-33305 | 1 Qualcomm | 162 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 159 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH. | |||||
CVE-2022-33302 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 447 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | |||||
CVE-2022-33296 | 1 Qualcomm | 228 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 225 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message. | |||||
CVE-2022-33289 | 1 Qualcomm | 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 7wcn785x-1 and 449 more | 2024-04-12 | N/A | 6.8 MEDIUM |
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | |||||
CVE-2022-33288 | 1 Qualcomm | 256 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 253 more | 2024-04-12 | N/A | 8.8 HIGH |
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. | |||||
CVE-2022-33280 | 1 Qualcomm | 124 Apq8096au, Apq8096au Firmware, Ar8031 and 121 more | 2024-04-12 | N/A | 8.8 HIGH |
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet. | |||||
CVE-2022-33278 | 1 Qualcomm | 246 Aqt1000, Aqt1000 Firmware, Ar8035 and 243 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. | |||||
CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. | |||||
CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. |