CVE-2023-28563

all versions

Information disclosure in IOE Firmware while handling WMI command.

6.1MEDIUM

CVE-2023-28565

all versions

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

7.8HIGH

CVE-2023-28560

all versions

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

7.8HIGH

CVE-2023-28559

all versions

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

7.8HIGH

CVE-2023-21625

all versions

Information disclosure in Network Services due to buffer over-read while the device receives DNS response.

8.2HIGH

CVE-2023-21628

all versions

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

8.4HIGH

CVE-2022-40505

all versions

Information disclosure due to buffer over-read in Modem while parsing DNS hostname.

8.2HIGH

CVE-2022-33291

all versions

Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.

8.2HIGH

CVE-2022-33287

all versions

Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.

8.2HIGH

CVE-2022-33222

all versions

Information disclosure due to buffer over-read while parsing DNS response packets in Modem.

8.2HIGH

CVE-2022-25731

all versions

Information disclosure in modem due to buffer over-read while processing packets from DNS server

7.5HIGH

CVE-2022-25730

all versions

Information disclosure in modem due to improper check of IP type while processing DNS server query

8.2HIGH

CVE-2022-25655

all versions

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

8.4HIGH

CVE-2022-33229

all versions

Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets.

8.2HIGH

CVE-2022-25738

all versions

Information disclosure in modem due to buffer over-red while performing checksum of packet received

8.2HIGH

CVE-2022-25734

all versions

Denial of service in modem due to missing null check while processing IP packets with padding

7.5HIGH

CVE-2022-25733

all versions

Denial of service in modem due to null pointer dereference while processing DNS packets

7.5HIGH

CVE-2022-25742

all versions

Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Ind

7.5HIGH

CVE-2022-25727

all versions

Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industria

9.8CRITICAL

CVE-2022-25674

all versions

Cryptographic issues in WLAN during the group key handshake of the WPA/WPA2 protocol in Snapdragon Consumer IOT, Snapdragon Indust

6.5MEDIUM

CVE-2022-25719

all versions

Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdrag

8.2HIGH

CVE-2022-25718

all versions

Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Co

9.1CRITICAL

CVE-2021-30288

all versions

Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Sn

8.4HIGH

CVE-2020-11269

all versions

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Aut

8.8HIGH

CVE-2019-14135

all versions

Possible integer overflow to buffer overflow in WLAN while parsing nonstandard NAN IE messages. in Snapdragon Auto, Snapdragon Com

7.8HIGH