Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up
Qualcomm, Inc. Snapdragon

Version Snapdragon 712 Mobile Platform

OTHER 60 CVEs

Known Vulnerabilities

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

HIGH CVSS 8.4 Published Dec 02, 2024

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

HIGH CVSS 7.5 Published Sep 02, 2024

CVE-2024-33016

memory corruption when an invalid firehose patch command is invoked.

MEDIUM CVSS 6.8 Published Sep 02, 2024

CVE-2024-23353

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

HIGH CVSS 8.4 Published Jul 01, 2024

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

CRITICAL CVSS 9.1 Published Jun 03, 2024

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

CRITICAL CVSS 9.3 Published Mar 04, 2024

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

HIGH CVSS 7.5 Published Feb 06, 2024

CVE-2023-43533

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

HIGH CVSS 7.5 Published Feb 06, 2024

CVE-2023-33060

Transient DOS in Core when DDR memory check is called while DDR is not initialized.

HIGH CVSS 7.1 Published Feb 06, 2024

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

HIGH CVSS 8.4 Published Jan 02, 2024

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

CRITICAL CVSS 9.3 Published Jan 02, 2024

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

HIGH CVSS 8.4 Published Dec 05, 2023

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

HIGH CVSS 7.5 Published Dec 05, 2023

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

HIGH CVSS 8.4 Published Dec 05, 2023

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

MEDIUM CVSS 6.0 Published Dec 05, 2023

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

HIGH CVSS 8.2 Published Dec 05, 2023

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28569

Information disclosure in WLAN HAL while handling command through WMI interfaces.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-28568

Information disclosure in WLAN HAL when reception status handler is called.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-28566

Information disclosure in WLAN HAL while handling the WMI state info command.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-28563

Information disclosure in IOE Firmware while handling WMI command.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-22388

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

CRITICAL CVSS 9.8 Published Nov 07, 2023

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-24849

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

HIGH CVSS 8.2 Published Oct 03, 2023

CVE-2023-24848

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.

HIGH CVSS 8.2 Published Oct 03, 2023

CVE-2023-24847

Transient DOS in Modem while allocating DSM items.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-22385

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

HIGH CVSS 8.2 Published Oct 03, 2023

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28565

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28564

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28560

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28558

Memory corruption in WLAN handler while processing PhyID in Tx status handler.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28557

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28544

Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-21629

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.

MEDIUM CVSS 6.8 Published Jul 04, 2023

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

HIGH CVSS 7.5 Published Jun 06, 2023

CVE-2023-21628

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

HIGH CVSS 8.4 Published Jun 06, 2023

CVE-2022-40529

Memory corruption due to improper access control in kernel while processing a mapping request from root process.

HIGH CVSS 7.1 Published Jun 06, 2023

CVE-2022-40521

Transient DOS due to improper authorization in Modem

HIGH CVSS 7.5 Published Jun 06, 2023

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the list.

HIGH CVSS 8.4 Published Jun 06, 2023

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

HIGH CVSS 7.9 Published Jun 06, 2023

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

HIGH CVSS 7.1 Published Jun 06, 2023

CVE-2022-40504

Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.

HIGH CVSS 7.5 Published May 02, 2023

CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

HIGH CVSS 8.4 Published Apr 04, 2023

CVE-2022-33302

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

MEDIUM CVSS 6.8 Published Apr 04, 2023

CVE-2022-33296

Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.

MEDIUM CVSS 5.9 Published Apr 04, 2023

CVE-2022-33289

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.

MEDIUM CVSS 6.8 Published Apr 04, 2023

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption key.

CRITICAL CVSS 9.3 Published Apr 04, 2023