Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
Qualcomm, Inc. Snapdragon

Version Snapdragon Wear 1300 Platform

OTHER 61 CVEs

Known Vulnerabilities

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

HIGH CVSS 8.4 Published Dec 02, 2024

CVE-2024-33016

memory corruption when an invalid firehose patch command is invoked.

MEDIUM CVSS 6.8 Published Sep 02, 2024

CVE-2024-23362

Cryptographic issue while parsing RSA keys in COBR format.

HIGH CVSS 7.1 Published Sep 02, 2024

CVE-2024-23359

Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.

HIGH CVSS 8.2 Published Sep 02, 2024

CVE-2024-23353

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

HIGH CVSS 7.3 Published Jul 01, 2024

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

HIGH CVSS 7.8 Published Jul 01, 2024

CVE-2024-21462

Transient DOS while loading the TA ELF file.

HIGH CVSS 7.1 Published Jul 01, 2024

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

HIGH CVSS 8.4 Published Jul 01, 2024

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

CRITICAL CVSS 9.1 Published Jun 03, 2024

CVE-2023-43542

Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.

HIGH CVSS 7.8 Published Jun 03, 2024

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-33072

Memory corruption in Core while processing control functions.

CRITICAL CVSS 9.3 Published Feb 06, 2024

CVE-2023-33060

Transient DOS in Core when DDR memory check is called while DDR is not initialized.

HIGH CVSS 7.1 Published Feb 06, 2024

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

HIGH CVSS 8.4 Published Jan 02, 2024

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

CRITICAL CVSS 9.3 Published Jan 02, 2024

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

CRITICAL CVSS 9.3 Published Jan 02, 2024

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

MEDIUM CVSS 6.0 Published Dec 05, 2023

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

HIGH CVSS 8.2 Published Dec 05, 2023

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28556

Cryptographic issue in HLOS during key management.

HIGH CVSS 7.1 Published Nov 07, 2023

CVE-2023-28545

Memory corruption in TZ Secure OS while loading an app ELF.

HIGH CVSS 8.2 Published Nov 07, 2023

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

HIGH CVSS 8.4 Published Nov 07, 2023

CVE-2023-22388

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

CRITICAL CVSS 9.8 Published Nov 07, 2023

CVE-2023-22385

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

HIGH CVSS 8.2 Published Oct 03, 2023

CVE-2023-28565

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-21631

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.

HIGH CVSS 7.5 Published Jul 04, 2023

CVE-2022-40523

Information disclosure in Kernel due to indirect branch misprediction.

HIGH CVSS 7.1 Published Jun 06, 2023

CVE-2022-40521

Transient DOS due to improper authorization in Modem

HIGH CVSS 7.5 Published Jun 06, 2023

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the list.

HIGH CVSS 8.4 Published Jun 06, 2023

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

HIGH CVSS 7.1 Published Jun 06, 2023

CVE-2022-40505

Information disclosure due to buffer over-read in Modem while parsing DNS hostname.

HIGH CVSS 8.2 Published May 02, 2023

CVE-2022-33304

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.

HIGH CVSS 7.5 Published May 02, 2023

CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

HIGH CVSS 8.4 Published Apr 04, 2023

CVE-2022-33302

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

MEDIUM CVSS 6.8 Published Apr 04, 2023

CVE-2022-33295

Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-33294

Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.

HIGH CVSS 7.5 Published Apr 04, 2023

CVE-2022-33291

Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-33289

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.

MEDIUM CVSS 6.8 Published Apr 04, 2023

CVE-2022-33287

Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-33259

Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.

CRITICAL CVSS 9.8 Published Apr 04, 2023

CVE-2022-33258

Information disclosure due to buffer over-read in modem while reading configuration parameters.

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption key.

CRITICAL CVSS 9.3 Published Apr 04, 2023

CVE-2022-33228

Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header.

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-33223

Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.

HIGH CVSS 7.5 Published Apr 04, 2023

CVE-2022-33222

Information disclosure due to buffer over-read while parsing DNS response packets in Modem.

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-33211

memory corruption in modem due to improper check while calculating size of serialized CoAP message

CRITICAL CVSS 9.8 Published Apr 04, 2023

CVE-2022-25747

Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-25745

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

CRITICAL CVSS 9.8 Published Apr 04, 2023

CVE-2022-25740

Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface

CRITICAL CVSS 9.8 Published Apr 04, 2023

CVE-2022-25739

Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call

HIGH CVSS 7.5 Published Apr 04, 2023

CVE-2022-25737

Information disclosure in modem due to missing NULL check while reading packets received from local network

HIGH CVSS 7.5 Published Apr 04, 2023

CVE-2022-25731

Information disclosure in modem due to buffer over-read while processing packets from DNS server

HIGH CVSS 7.5 Published Apr 04, 2023

CVE-2022-25730

Information disclosure in modem due to improper check of IP type while processing DNS server query

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-25726

Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet

HIGH CVSS 8.2 Published Apr 04, 2023

CVE-2022-25678

Memory correction in modem due to buffer overwrite during coap connection

CRITICAL CVSS 9.8 Published Apr 04, 2023