threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qualcomm sd 8cx gen2 firmware
Product
qualcomm sd 8cx gen2 firmware
83 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-28538
all versions
Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.
8.4
HIGH
CVE-2023-21664
all versions
Memory Corruption in Core Platform while printing the response buffer in log.
7.8
HIGH
CVE-2023-21662
all versions
Memory corruption in Core Platform while printing the response buffer in log.
7.8
HIGH
CVE-2023-21651
all versions
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3
CRITICAL
CVE-2023-21626
all versions
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1
HIGH
CVE-2022-40510
all versions
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8
CRITICAL
CVE-2022-40532
all versions
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4
HIGH
CVE-2022-33302
all versions
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command le
6.8
MEDIUM
CVE-2022-33289
all versions
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
6.8
MEDIUM
CVE-2022-33288
all versions
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection
9.3
CRITICAL
CVE-2022-33269
all versions
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
9.3
CRITICAL
CVE-2022-33231
all versions
Memory corruption due to double free in core while initializing the encryption key.
9.3
CRITICAL
CVE-2022-40531
all versions
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4
HIGH
CVE-2022-40530
all versions
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4
HIGH
CVE-2022-33257
all versions
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
9.3
CRITICAL
CVE-2022-33242
all versions
Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.
7.8
HIGH
CVE-2022-33213
all versions
Memory corruption in modem due to buffer overflow while processing a PPP packet
7.5
HIGH
CVE-2022-25705
all versions
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
7.8
HIGH
CVE-2022-25694
all versions
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
8.4
HIGH
CVE-2022-25655
all versions
Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.
8.4
HIGH
CVE-2022-40514
all versions
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc respo
9.8
CRITICAL
CVE-2022-40512
all versions
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5
HIGH
CVE-2022-33277
all versions
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4
HIGH
CVE-2022-33271
all versions
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
8.2
HIGH
CVE-2022-33248
all versions
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
7.8
HIGH
CVE-2022-33233
all versions
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
7.8
HIGH
CVE-2022-33232
all versions
Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory
9.3
CRITICAL
CVE-2022-40520
all versions
Memory corruption due to stack-based buffer overflow in Core
8.4
HIGH
CVE-2022-40519
all versions
Information disclosure due to buffer overread in Core
6.8
MEDIUM
CVE-2022-40518
all versions
Information disclosure due to buffer overread in Core
6.8
MEDIUM
CVE-2022-40517
all versions
Memory corruption in core due to stack-based buffer overflow
8.4
HIGH
CVE-2022-40516
all versions
Memory corruption in Core due to stack-based buffer overflow.
8.4
HIGH
CVE-2022-33286
all versions
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5
HIGH
CVE-2022-33285
all versions
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5
HIGH
CVE-2022-33284
all versions
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2
HIGH
CVE-2022-33253
all versions
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
7.5
HIGH
CVE-2022-33252
all versions
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
8.2
HIGH
CVE-2022-25746
all versions
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
8.1
HIGH
CVE-2022-33238
all versions
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Sna
7.5
HIGH
CVE-2022-33235
all versions
Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto
8.2
HIGH
CVE-2022-25695
all versions
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto,
8.4
HIGH
CVE-2022-25682
all versions
Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Sn
8.4
HIGH
CVE-2022-25681
all versions
Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor tran
8.4
HIGH
CVE-2022-33239
all versions
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto
7.5
HIGH
CVE-2022-33237
all versions
Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Sna
7.5
HIGH
CVE-2022-25749
all versions
Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Sna
7.5
HIGH
CVE-2022-25748
all versions
Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Comp
9.8
CRITICAL
CVE-2022-25736
all versions
Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Comput
7.5
HIGH
CVE-2022-25665
all versions
Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdrag
6.8
MEDIUM
CVE-2022-25663
all versions
Possible buffer overflow due to lack of buffer length check during management frame Rx handling lead to denial of service in Snapd
5.5
MEDIUM
CVE-2022-25661
all versions
Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT,
8.4
HIGH
CVE-2022-25660
all versions
Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon I
7.8
HIGH
CVE-2022-25690
all versions
Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Au
7.5
HIGH
CVE-2022-22094
all versions
memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon Compute, Snapdragon Connectivity,
7.8
HIGH
CVE-2022-22093
all versions
Memory corruption or temporary denial of service due to improper handling of concurrent hypervisor operations to attach or detach
7.8
HIGH
CVE-2022-22091
all versions
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Comp
7.5
HIGH
CVE-2022-22074
all versions
Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity
8.4
HIGH
CVE-2022-22066
all versions
Memory corruption occurs while processing command received from HLOS due to improper length check in Snapdragon Auto, Snapdragon C
8.4
HIGH
CVE-2022-22070
all versions
Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon C
7.8
HIGH
CVE-2022-22062
all versions
An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Com
8.2
HIGH
CVE-2021-35135
all versions
A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connecti
6.2
MEDIUM
CVE-2021-35132
all versions
Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Sna
8.4
HIGH
CVE-2021-35122
all versions
Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdrago
9.3
CRITICAL
CVE-2021-35097
all versions
Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in S
7.3
HIGH
CVE-2021-35101
all versions
Improper handling of writes to virtual GICR control can lead to assertion failure in the hypervisor in Snapdragon Auto, Snapdragon
7.1
HIGH
CVE-2021-35090
all versions
Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon
9.3
CRITICAL
CVE-2021-35083
all versions
Possible out of bound read due to improper validation of certificate chain in SSL or Internet key exchange in Snapdragon Auto, Sna
8.2
HIGH
CVE-2021-35078
all versions
Possible memory leak due to improper validation of certificate chain length while parsing server certificate chain in Snapdragon A
7.5
HIGH
CVE-2021-30350
all versions
Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Sn
8.4
HIGH
CVE-2021-30349
all versions
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto
8.2
HIGH
CVE-2021-30344
all versions
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Comp
7.5
HIGH
CVE-2021-30342
all versions
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received
9.1
CRITICAL
CVE-2021-30341
all versions
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapd
9.8
CRITICAL
CVE-2021-30281
all versions
Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device con
8.4
HIGH
CVE-2021-30333
all versions
Improper validation of buffer size input to the EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Sna
7.8
HIGH
CVE-2021-1942
all versions
Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, S
9.3
CRITICAL
CVE-2021-30323
all versions
Improper validation of maximum size of data write to EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute
7.8
HIGH
CVE-2021-30322
all versions
Possible out of bounds write due to improper validation of number of GPIOs configured in an internal parameters array in Snapdrago
7.8
HIGH
CVE-2021-30317
all versions
Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdrago
9.3
CRITICAL
CVE-2021-30308
all versions
Possible buffer overflow while printing the HARQ memory partition detail due to improper validation of buffer size in Snapdragon A
7.8
HIGH
CVE-2021-30307
all versions
Possible denial of service due to improper validation of DNS response when DNS client requests with PTR, NAPTR or SRV query type i
7.5
HIGH
CVE-2021-30300
all versions
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice w
7.5
HIGH
CVE-2021-30285
all versions
Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Sn
9.3
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin