CVE-2024-21473

all versions

Memory corruption while redirecting log file to any file location with any file name.

9.8CRITICAL

CVE-2023-33083

all versions

Memory corruption in WLAN Host while processing RRM beacon on the AP.

9.8CRITICAL

CVE-2023-33082

all versions

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

9.8CRITICAL

CVE-2023-28563

all versions

Information disclosure in IOE Firmware while handling WMI command.

6.1MEDIUM

CVE-2023-28565

all versions

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

7.8HIGH

CVE-2023-28564

all versions

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

7.8HIGH

CVE-2023-28560

all versions

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

7.8HIGH

CVE-2023-21628

all versions

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

8.4HIGH

CVE-2022-25655

all versions

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

8.4HIGH

CVE-2021-30325

all versions

Possible out of bound access of DCI resources due to lack of validation process and resource allocation in Snapdragon Auto, Snapdr

6.7MEDIUM

CVE-2021-30313

all versions

Use after free condition can occur in wired connectivity due to a race condition while creating and deleting folders in Snapdragon

6.7MEDIUM

CVE-2021-30303

all versions

Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon

7.8HIGH

CVE-2021-30266

all versions

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon

6.7MEDIUM

CVE-2021-30264

all versions

Possible use after free due improper validation of reference from call back to internal store table in Snapdragon Auto, Snapdragon

6.7MEDIUM

CVE-2021-1924

all versions

Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon

9.0CRITICAL

CVE-2021-1980

all versions

Possible buffer over read due to lack of length check while parsing beacon IE response in Snapdragon Auto, Snapdragon Compute, Sna

7.5HIGH

CVE-2021-1976

all versions

A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Com

9.8CRITICAL

CVE-2021-1947

all versions

Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Con

8.4HIGH

CVE-2021-1974

all versions

Possible buffer over read due to lack of alignment between map or unmap length of IPA SMMU and WLAN SMMU in Snapdragon Auto, Snapd

7.5HIGH

CVE-2021-1962

all versions

Buffer Overflow while processing IOCTL for getting peripheral endpoint information there is no proper validation for input maximum

6.7MEDIUM

CVE-2021-1948

all versions

Possible out of bound read due to lack of length check of data while parsing the beacon or probe response in Snapdragon Auto, Snap

7.5HIGH

CVE-2021-1941

all versions

Possible buffer over read issue due to improper length check on WPA IE string sent by peer in Snapdragon Auto, Snapdragon Compute,

7.5HIGH

CVE-2021-1909

all versions

Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, S

7.3HIGH

CVE-2021-1972

all versions

Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snap

9.8CRITICAL

CVE-2021-1928

all versions

Buffer over read could occur due to incorrect check of buffer size while flashing emmc devices in Snapdragon Connectivity, Snapdra

4.6MEDIUM

CVE-2020-11301

all versions

Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapd

9.1CRITICAL

CVE-2021-1964

all versions

Possible buffer over read due to improper validation of IE size while parsing beacon from peer device in Snapdragon Auto, Snapdrag

7.5HIGH

CVE-2021-1954

all versions

Possible buffer over read due to improper validation of data pointer while parsing FILS indication IE in Snapdragon Auto, Snapdrag

7.5HIGH

CVE-2021-1945

all versions

Possible out of bound read due to lack of length check of Bandwidth-NSS IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn

7.5HIGH

CVE-2021-1943

all versions

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response

7.5HIGH

CVE-2021-1887

all versions

An assertion can be reached in the WLAN subsystem while using the Wi-Fi Fine Timing Measurement protocol in Snapdragon Wired Infra

7.5HIGH

CVE-2020-11267

all versions

Stack out-of-bounds write occurs while setting up a cipher device if the provided IV length exceeds the max limit value in Snapdra

8.4HIGH

CVE-2020-11235

all versions

Buffer overflow might occur while parsing unified command due to lack of check of input data received in Snapdragon Auto, Snapdrag

7.8HIGH

CVE-2021-1927

all versions

Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdragon Com

8.4HIGH

CVE-2021-1915

all versions

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute,

7.8HIGH

CVE-2020-11296

all versions

Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snap

7.5HIGH

CVE-2020-11280

all versions

Denial of service while processing fine timing measurement request (FTMR) frame with reserved bits set in the FTM parameter IE due

7.5HIGH

CVE-2020-11270

all versions

Possible denial of service due to RTT responder consistently rejects all FTMR by transmitting FTM1 with failure status in the FTM

7.5HIGH

CVE-2020-11269

all versions

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Aut

8.8HIGH

CVE-2020-3666

all versions

u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon

7.8HIGH

CVE-2020-3700

all versions

Possible out of bounds read due to a missing bounds check and could lead to local information disclosure in the wifi driver with n

7.5HIGH

CVE-2019-10607

all versions

Out of bounds memcpy can occur by providing the embedded NULL character string and length greater than the actual string length in

7.8HIGH

CVE-2019-10595

all versions

Possible buffer overwrite in message handler due to lack of validation of tid value calculated from packets received from firmware

7.8HIGH

CVE-2018-11947

all versions

The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consu

5.5MEDIUM

CVE-2018-11968

all versions

Improper check before assigning value can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity

7.8HIGH

CVE-2017-18279

all versions

Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, S

7.8HIGH

CVE-2018-11871

all versions

Buffer overwrite can happen in WLAN function while processing set pdev parameter command due to lack of input validation in Snapdr

7.8HIGH

CVE-2015-9220

all versions

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear IPQ4019, IPQ8064, M

9.8CRITICAL

CVE-2014-9998

all versions

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon

9.8CRITICAL