Qualcomm, Inc. Snapdragon vSnapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB) - 98 CVEs

CVE-2024-45542

Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.

HIGH CVSS 7.8 Published Jan 06, 2025

CVE-2024-45541

Memory corruption when IOCTL call is invoked from user-space to read board data.

HIGH CVSS 7.8 Published Jan 06, 2025

CVE-2024-43050

Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.

HIGH CVSS 7.8 Published Dec 02, 2024

CVE-2024-43049

Memory corruption while invoking IOCTL calls from user space to set generic private command inside WLAN driver.

HIGH CVSS 7.8 Published Dec 02, 2024

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

HIGH CVSS 8.4 Published Dec 02, 2024

CVE-2024-33044

Memory corruption while Configuring the SMR/S2CR register in Bypass mode.

HIGH CVSS 8.4 Published Dec 02, 2024

CVE-2024-38410

Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-38409

Memory corruption while station LL statistic handling.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

HIGH CVSS 8.2 Published Nov 04, 2024

CVE-2024-38407

Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-38406

Memory corruption while handling IOCTL calls in JPEG Encoder driver.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-33065

Memory corruption while taking snapshot when an offset variable is set by camera driver.

HIGH CVSS 8.4 Published Oct 07, 2024

CVE-2024-23369

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

HIGH CVSS 7.8 Published Oct 07, 2024

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

HIGH CVSS 7.5 Published Sep 02, 2024

CVE-2024-33047

Memory corruption when the captureRead QDCM command is invoked from user-space.

HIGH CVSS 8.4 Published Sep 02, 2024

CVE-2024-33016

memory corruption when an invalid firehose patch command is invoked.

MEDIUM CVSS 6.8 Published Sep 02, 2024

CVE-2024-23364

Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).

HIGH CVSS 7.5 Published Sep 02, 2024

CVE-2024-23362

Cryptographic issue while parsing RSA keys in COBR format.

HIGH CVSS 7.1 Published Sep 02, 2024

CVE-2024-23357

Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.

MEDIUM CVSS 6.2 Published Aug 05, 2024

CVE-2024-23356

Memory corruption during session sign renewal request calls in HLOS.

HIGH CVSS 7.8 Published Aug 05, 2024

CVE-2024-23355

Memory corruption when keymaster operation imports a shared key.

HIGH CVSS 7.8 Published Aug 05, 2024

CVE-2024-21481

Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.

HIGH CVSS 8.4 Published Aug 05, 2024

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

HIGH CVSS 7.3 Published Jul 01, 2024

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

HIGH CVSS 7.8 Published Jul 01, 2024

CVE-2024-21462

Transient DOS while loading the TA ELF file.

HIGH CVSS 7.1 Published Jul 01, 2024

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

HIGH CVSS 8.4 Published Jul 01, 2024

CVE-2023-43554

Memory corruption while processing IOCTL handler in FastRPC.

HIGH CVSS 8.4 Published Jul 01, 2024

CVE-2024-23360

Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.

HIGH CVSS 8.4 Published Jun 03, 2024

CVE-2023-43556

Memory corruption in Hypervisor when platform information mentioned is not aligned.

CRITICAL CVSS 9.3 Published Jun 03, 2024

CVE-2023-43542

Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.

HIGH CVSS 7.8 Published Jun 03, 2024

CVE-2023-43538

Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.

CRITICAL CVSS 9.3 Published Jun 03, 2024

CVE-2024-21476

Memory corruption when the channel ID passed by user is not validated and further used.

HIGH CVSS 7.8 Published May 06, 2024

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or re-initialization.

HIGH CVSS 8.4 Published May 06, 2024

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

HIGH CVSS 8.4 Published May 06, 2024

CVE-2023-43530

Memory corruption in HLOS while checking for the storage type.

MEDIUM CVSS 5.9 Published May 06, 2024

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.

HIGH CVSS 8.4 Published May 06, 2024

CVE-2024-21470

Memory corruption while allocating memory for graphics.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-33115

Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.

HIGH CVSS 7.8 Published Apr 01, 2024

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-43541

Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-43540

Memory corruption while processing the IOCTL FM HCI WRITE request.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-33078

Information Disclosure while processing IOCTL request in FastRPC.

MEDIUM CVSS 5.1 Published Mar 04, 2024

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

CRITICAL CVSS 9.3 Published Mar 04, 2024

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

HIGH CVSS 7.5 Published Feb 06, 2024

CVE-2023-43535

Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE event trigger.

HIGH CVSS 8.4 Published Feb 06, 2024

CVE-2023-43533

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

HIGH CVSS 7.5 Published Feb 06, 2024

CVE-2023-43532

Memory corruption while reading ACPI config through the user mode app.

HIGH CVSS 8.4 Published Feb 06, 2024

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.

HIGH CVSS 7.5 Published Feb 06, 2024

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

MEDIUM CVSS 5.9 Published Feb 06, 2024

CVE-2023-33072

Memory corruption in Core while processing control functions.

CRITICAL CVSS 9.3 Published Feb 06, 2024

CVE-2023-33046

Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.

HIGH CVSS 7.8 Published Feb 06, 2024

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33037

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.

HIGH CVSS 7.1 Published Jan 02, 2024

CVE-2023-33036

Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.

HIGH CVSS 7.1 Published Jan 02, 2024

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

CRITICAL CVSS 9.3 Published Jan 02, 2024

CVE-2023-33098

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

HIGH CVSS 7.5 Published Dec 05, 2023

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

HIGH CVSS 7.5 Published Dec 05, 2023

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

HIGH CVSS 8.4 Published Dec 05, 2023

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

HIGH CVSS 7.5 Published Dec 05, 2023

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

HIGH CVSS 8.4 Published Dec 05, 2023

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28587

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

MEDIUM CVSS 6.0 Published Dec 05, 2023

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

HIGH CVSS 8.2 Published Dec 05, 2023

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-33047

Transient DOS in WLAN Firmware while parsing no-inherit IES.

HIGH CVSS 7.5 Published Nov 07, 2023

CVE-2023-28556

Cryptographic issue in HLOS during key management.

HIGH CVSS 7.1 Published Nov 07, 2023

CVE-2023-28545

Memory corruption in TZ Secure OS while loading an app ELF.

HIGH CVSS 8.2 Published Nov 07, 2023

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

HIGH CVSS 8.4 Published Nov 07, 2023

CVE-2023-33028

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

CRITICAL CVSS 9.8 Published Oct 03, 2023

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-24853

Memory Corruption in HLOS while registering for key provisioning notify.

HIGH CVSS 8.4 Published Oct 03, 2023

CVE-2023-24850

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

HIGH CVSS 7.8 Published Oct 03, 2023

CVE-2023-21673

Improper Access to the VM resource manager can lead to Memory Corruption.

HIGH CVSS 8.7 Published Oct 03, 2023

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

HIGH CVSS 7.5 Published Sep 05, 2023