threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qualcomm mdm9207 firmware
Product
qualcomm mdm9207 firmware
83 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-21626
all versions
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1
HIGH
CVE-2022-40510
all versions
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8
CRITICAL
CVE-2022-33295
all versions
Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.
8.2
HIGH
CVE-2022-33294
all versions
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request mes
7.5
HIGH
CVE-2022-33259
all versions
Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.
9.8
CRITICAL
CVE-2022-33258
all versions
Information disclosure due to buffer over-read in modem while reading configuration parameters.
8.2
HIGH
CVE-2022-33228
all versions
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in head
8.2
HIGH
CVE-2022-33223
all versions
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
7.5
HIGH
CVE-2022-33222
all versions
Information disclosure due to buffer over-read while parsing DNS response packets in Modem.
8.2
HIGH
CVE-2022-33211
all versions
memory corruption in modem due to improper check while calculating size of serialized CoAP message
9.8
CRITICAL
CVE-2022-25747
all versions
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message
8.2
HIGH
CVE-2022-25740
all versions
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
9.8
CRITICAL
CVE-2022-25739
all versions
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
7.5
HIGH
CVE-2022-25737
all versions
Information disclosure in modem due to missing NULL check while reading packets received from local network
7.5
HIGH
CVE-2022-25731
all versions
Information disclosure in modem due to buffer over-read while processing packets from DNS server
7.5
HIGH
CVE-2022-25730
all versions
Information disclosure in modem due to improper check of IP type while processing DNS server query
8.2
HIGH
CVE-2022-25726
all versions
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
8.2
HIGH
CVE-2022-25678
all versions
Memory correction in modem due to buffer overwrite during coap connection
9.8
CRITICAL
CVE-2022-33213
all versions
Memory corruption in modem due to buffer overflow while processing a PPP packet
7.5
HIGH
CVE-2022-25705
all versions
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
7.8
HIGH
CVE-2022-25694
all versions
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
8.4
HIGH
CVE-2022-33233
all versions
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
7.8
HIGH
CVE-2022-33229
all versions
Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets.
8.2
HIGH
CVE-2022-25738
all versions
Information disclosure in modem due to buffer over-red while performing checksum of packet received
8.2
HIGH
CVE-2022-25735
all versions
Denial of service in modem due to missing null check while processing TCP or UDP packets from server
7.5
HIGH
CVE-2022-25734
all versions
Denial of service in modem due to missing null check while processing IP packets with padding
7.5
HIGH
CVE-2022-25733
all versions
Denial of service in modem due to null pointer dereference while processing DNS packets
7.5
HIGH
CVE-2022-25732
all versions
Information disclosure in modem due to buffer over read in dns client due to missing length check
8.2
HIGH
CVE-2022-25728
all versions
Information disclosure in modem due to buffer over-read while processing response from DNS server
8.2
HIGH
CVE-2022-25695
all versions
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto,
8.4
HIGH
CVE-2022-25682
all versions
Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Sn
8.4
HIGH
CVE-2022-25742
all versions
Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Ind
7.5
HIGH
CVE-2022-25727
all versions
Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industria
9.8
CRITICAL
CVE-2021-30344
all versions
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Comp
7.5
HIGH
CVE-2021-30342
all versions
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received
9.1
CRITICAL
CVE-2021-30341
all versions
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapd
9.8
CRITICAL
CVE-2021-30333
all versions
Improper validation of buffer size input to the EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Sna
7.8
HIGH
CVE-2021-30323
all versions
Improper validation of maximum size of data write to EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute
7.8
HIGH
CVE-2021-30300
all versions
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice w
7.5
HIGH
CVE-2021-30289
all versions
Possible buffer overflow due to lack of range check while processing a DIAG command for COEX management in Snapdragon Auto, Snapdr
7.8
HIGH
CVE-2021-30273
all versions
Possible assertion due to improper handling of IPV6 packet with invalid length in destination options header in Snapdragon Auto, S
7.5
HIGH
CVE-2021-30272
all versions
Possible null pointer dereference in thread cache operation handler due to lack of validation of user provided input in Snapdragon
7.3
HIGH
CVE-2021-30271
all versions
Possible null pointer dereference in trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto,
7.3
HIGH
CVE-2021-30270
all versions
Possible null pointer dereference in thread profile trap handler due to lack of thread ID validation before dereferencing it in Sn
7.3
HIGH
CVE-2021-30268
all versions
Possible heap Memory Corruption Issue due to lack of input validation when sending HWTC IQ Capture command in Snapdragon Auto, Sna
7.8
HIGH
CVE-2021-30284
all versions
Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto
7.5
HIGH
CVE-2021-30255
all versions
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in Snapdragon Auto, Snapdragon Compute, Snapd
7.8
HIGH
CVE-2021-30254
all versions
Possible buffer overflow due to improper input validation in factory calibration and test DIAG command in Snapdragon Auto, Snapdra
7.8
HIGH
CVE-2021-1975
all versions
Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Comput
9.8
CRITICAL
CVE-2021-1973
all versions
A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivit
7.8
HIGH
CVE-2021-1924
all versions
Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon
9.0
CRITICAL
CVE-2021-1959
all versions
Possible memory corruption due to lack of bound check of input index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi
7.8
HIGH
CVE-2021-30261
all versions
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from
8.4
HIGH
CVE-2021-1935
all versions
Possible null pointer dereference due to lack of validation check for passed pointer during key import in Snapdragon Auto, Snapdra
7.1
HIGH
CVE-2021-1909
all versions
Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, S
7.3
HIGH
CVE-2021-1920
all versions
Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon C
9.8
CRITICAL
CVE-2021-1919
all versions
Integer underflow can occur when the RTCP length is lesser than the actual blocks present in Snapdragon Auto, Snapdragon Comp
9.8
CRITICAL
CVE-2021-1916
all versions
Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto,
9.8
CRITICAL
CVE-2021-1914
all versions
Loop with unreachable exit condition may occur due to improper handling of unsupported input in Snapdragon Auto, Snapdragon Comput
7.5
HIGH
CVE-2020-11304
all versions
Possible out of bound read in DRM due to improper buffer length check. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connecti
7.8
HIGH
CVE-2020-11292
all versions
Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapd
7.8
HIGH
CVE-2020-11289
all versions
Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute,
7.8
HIGH
CVE-2020-11285
all versions
Buffer over-read while unpacking the RTCP packet we may read extra byte if wrong length is provided in RTCP packets in Snapdragon
8.2
HIGH
CVE-2020-11279
all versions
Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon Auto,
7.5
HIGH
CVE-2020-11255
all versions
Denial of service while processing RTCP packets containing multiple SDES reports due to memory for last SDES packet is freed and r
7.5
HIGH
CVE-2020-11251
all versions
Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon A
8.2
HIGH
CVE-2020-11191
all versions
Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute,
8.2
HIGH
CVE-2020-11227
all versions
Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdrag
9.8
CRITICAL
CVE-2020-11226
all versions
Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Comp
7.5
HIGH
CVE-2020-11221
all versions
Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insuffi
5.5
MEDIUM
CVE-2020-11199
all versions
HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in
5.5
MEDIUM
CVE-2020-11192
all versions
Out of bound write while parsing SDP string due to missing check on null termination in Snapdragon Auto, Snapdragon Compute, Snapd
9.8
CRITICAL
CVE-2020-11190
all versions
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Sna
9.1
CRITICAL
CVE-2020-11189
all versions
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Sna
9.1
CRITICAL
CVE-2020-11188
all versions
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Sna
9.1
CRITICAL
CVE-2020-11171
all versions
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Sna
9.1
CRITICAL
CVE-2020-11166
all versions
Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in
9.1
CRITICAL
CVE-2020-11204
all versions
Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for par
7.8
HIGH
CVE-2020-11195
all versions
Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffe
7.8
HIGH
CVE-2020-11177
all versions
User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device loc
8.8
HIGH
CVE-2020-11170
all versions
Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction i
9.8
CRITICAL
CVE-2020-11132
all versions
u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, S
7.1
HIGH
CVE-2020-11123
all versions
u'information disclosure in gatekeeper trustzone implementation as the throttling mechanism to prevent brute force attempts at get
5.5
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin