Qualcomm, Inc. Snapdragon vSD439 - 13 CVEs

CVE-2023-28537

Memory corruption while allocating memory in COmxApeDec module in Audio.

HIGH CVSS 8.4 Published Aug 08, 2023

CVE-2023-22666

Memory Corruption in Audio while playing amrwbplus clips with modified content.

HIGH CVSS 8.4 Published Aug 08, 2023

CVE-2023-21626

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

HIGH CVSS 7.1 Published Aug 08, 2023

CVE-2023-21625

Information disclosure in Network Services due to buffer over-read while the device receives DNS response.

HIGH CVSS 8.2 Published Aug 08, 2023

CVE-2022-40510

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

CRITICAL CVSS 9.8 Published Aug 08, 2023

CVE-2022-40537

Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.

HIGH CVSS 7.3 Published Mar 07, 2023

CVE-2022-33213

Memory corruption in modem due to buffer overflow while processing a PPP packet

HIGH CVSS 7.5 Published Mar 07, 2023

CVE-2022-25705

Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response

HIGH CVSS 7.8 Published Mar 07, 2023

CVE-2022-25694

Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM

HIGH CVSS 8.4 Published Mar 07, 2023

CVE-2022-22075

Information Disclosure in Graphics during GPU context switch.

MEDIUM CVSS 6.2 Published Mar 07, 2023

CVE-2022-33248

Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.

HIGH CVSS 7.8 Published Feb 09, 2023

CVE-2022-33233

Memory corruption due to configuration weakness in modem wile sending command to write protected files.