Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up
qualcomm qcs410_firmware

Version 0

SINGLE_NUMBER 80 CVEs

Known Vulnerabilities

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

HIGH CVSS 8.4 Published Dec 02, 2024

CVE-2024-33053

Memory corruption when multiple threads try to unregister the CVP buffer at the same time.

MEDIUM CVSS 6.7 Published Dec 02, 2024

CVE-2024-33044

Memory corruption while Configuring the SMR/S2CR register in Bypass mode.

HIGH CVSS 8.4 Published Dec 02, 2024

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.

MEDIUM CVSS 6.1 Published Dec 02, 2024

CVE-2024-33036

Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.

MEDIUM CVSS 6.7 Published Dec 02, 2024

CVE-2021-30299

Possible out of bound access in audio module due to lack of validation of user provided input.

MEDIUM CVSS 6.7 Published Nov 22, 2024

CVE-2024-38423

Memory corruption while processing GPU page table switch.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-38419

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-38415

Memory corruption while handling session errors from firmware.

HIGH CVSS 7.8 Published Nov 04, 2024

CVE-2024-33032

Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.

MEDIUM CVSS 6.7 Published Nov 04, 2024

CVE-2024-43047

Memory corruption while maintaining memory maps of HLOS memory.

HIGH CVSS 7.8 Published Oct 07, 2024

CVE-2024-38402

Memory corruption while processing IOCTL call for getting group info.

HIGH CVSS 7.8 Published Sep 02, 2024

CVE-2024-38401

Memory corruption while processing concurrent IOCTL calls.

HIGH CVSS 7.8 Published Sep 02, 2024

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

HIGH CVSS 8.4 Published Sep 02, 2024

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

HIGH CVSS 7.8 Published Sep 02, 2024

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

HIGH CVSS 7.5 Published Sep 02, 2024

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

HIGH CVSS 7.5 Published Sep 02, 2024

CVE-2024-33045

Memory corruption when BTFM client sends new messages over Slimbus to ADSP.

HIGH CVSS 8.4 Published Sep 02, 2024

CVE-2024-33042

Memory corruption when Alternative Frequency offset value is set to 255.

HIGH CVSS 7.8 Published Sep 02, 2024

CVE-2024-33016

memory corruption when an invalid firehose patch command is invoked.

MEDIUM CVSS 6.8 Published Sep 02, 2024

CVE-2024-33028

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.

HIGH CVSS 8.4 Published Aug 05, 2024

CVE-2024-33027

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.

HIGH CVSS 8.4 Published Aug 05, 2024

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

HIGH CVSS 8.4 Published Aug 05, 2024

CVE-2024-33022

Memory corruption while allocating memory in HGSL driver.

HIGH CVSS 8.4 Published Aug 05, 2024

CVE-2024-33021

Memory corruption while processing IOCTL call to set metainfo.

HIGH CVSS 8.4 Published Aug 05, 2024

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-23353

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-21479

Transient DOS during music playback of ALAC content.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-21459

Information disclosure while handling beacon or probe response frame in STA.

MEDIUM CVSS 6.5 Published Aug 05, 2024

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

HIGH CVSS 8.4 Published Jul 01, 2024

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

HIGH CVSS 7.8 Published Jul 01, 2024

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

HIGH CVSS 7.8 Published Jul 01, 2024

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

HIGH CVSS 8.4 Published Jul 01, 2024

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.

HIGH CVSS 8.4 Published May 06, 2024

CVE-2023-43527

Information disclosure while parsing dts header atom in Video.

MEDIUM CVSS 6.8 Published May 06, 2024

CVE-2023-43521

Memory corruption when multiple listeners are being registered with the same file descriptor.

MEDIUM CVSS 6.7 Published May 06, 2024

CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

HIGH CVSS 8.4 Published Apr 01, 2024

CVE-2023-43550

Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.

HIGH CVSS 7.8 Published Mar 04, 2024

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

HIGH CVSS 7.3 Published Mar 04, 2024

CVE-2023-43547

Memory corruption while invoking IOCTLs calls in Automotive Multimedia.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-43546

Memory corruption while invoking HGSL IOCTL context create.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-33086

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

HIGH CVSS 7.5 Published Mar 04, 2024

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

HIGH CVSS 8.4 Published Mar 04, 2024

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

CRITICAL CVSS 9.3 Published Mar 04, 2024

CVE-2023-43519

Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.

HIGH CVSS 7.3 Published Feb 06, 2024

CVE-2023-43518

Memory corruption in video while parsing invalid mp2 clip.

HIGH CVSS 7.3 Published Feb 06, 2024

CVE-2023-33067

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.

MEDIUM CVSS 6.7 Published Feb 06, 2024

CVE-2023-33065

Information disclosure in Audio while accessing AVCS services from ADSP payload.

MEDIUM CVSS 6.1 Published Feb 06, 2024

CVE-2023-33107

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

HIGH CVSS 8.4 Published Dec 05, 2023

CVE-2023-33106

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

HIGH CVSS 8.4 Published Dec 05, 2023

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-24847

Transient DOS in Modem while allocating DSM items.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-28558

Memory corruption in WLAN handler while processing PhyID in Tx status handler.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28577

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.

MEDIUM CVSS 6.7 Published Aug 08, 2023

CVE-2023-21649

Memory corruption in WLAN while running doDriverCmd for an unspecific command.

MEDIUM CVSS 6.7 Published Aug 08, 2023

CVE-2022-40510

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

CRITICAL CVSS 9.8 Published Aug 08, 2023

CVE-2023-28542

Memory Corruption in WLAN HOST while fetching TX status information.

HIGH CVSS 7.8 Published Jul 04, 2023

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

HIGH CVSS 7.8 Published Jul 04, 2023

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

HIGH CVSS 7.8 Published Jul 04, 2023

CVE-2023-21629

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.

MEDIUM CVSS 6.8 Published Jul 04, 2023

CVE-2023-21657

Memoru corruption in Audio when ADSP sends input during record use case.

HIGH CVSS 7.8 Published Jun 06, 2023

CVE-2022-33267

Memory corruption in Linux while sending DRM request.

MEDIUM CVSS 6.7 Published Jun 06, 2023

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

HIGH CVSS 7.9 Published Jun 06, 2023

CVE-2022-33227

Memory corruption in Linux android due to double free while calling unregister provider after register call.

MEDIUM CVSS 6.7 Published Jun 06, 2023

CVE-2023-21665

Memory corruption in Graphics while importing a file.

HIGH CVSS 8.4 Published May 02, 2023

CVE-2022-33289

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.

MEDIUM CVSS 6.8 Published Apr 04, 2023

CVE-2022-40539

Memory corruption in Automotive Android OS due to improper validation of array index.

HIGH CVSS 8.4 Published Mar 07, 2023

CVE-2022-40515

Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.

HIGH CVSS 7.3 Published Mar 07, 2023

CVE-2022-33245

Memory corruption in WLAN due to use after free

MEDIUM CVSS 6.7 Published Mar 07, 2023

CVE-2022-33242

Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.

HIGH CVSS 7.8 Published Mar 07, 2023

CVE-2022-33213

Memory corruption in modem due to buffer overflow while processing a PPP packet

HIGH CVSS 7.5 Published Mar 07, 2023

CVE-2022-40512

Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.

HIGH CVSS 7.5 Published Feb 09, 2023

CVE-2022-33271

Information disclosure due to buffer over-read in WLAN while parsing NMF frame.

HIGH CVSS 8.2 Published Feb 09, 2023