threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qualcomm sd 8cx gen3 firmware
Product
qualcomm sd 8cx gen3 firmware
59 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-21664
all versions
Memory Corruption in Core Platform while printing the response buffer in log.
7.8
HIGH
CVE-2023-21662
all versions
Memory corruption in Core Platform while printing the response buffer in log.
7.8
HIGH
CVE-2023-21652
all versions
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
7.7
HIGH
CVE-2023-21651
all versions
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3
CRITICAL
CVE-2023-21626
all versions
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1
HIGH
CVE-2022-40510
all versions
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8
CRITICAL
CVE-2022-40532
all versions
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4
HIGH
CVE-2022-33288
all versions
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection
9.3
CRITICAL
CVE-2022-33269
all versions
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
9.3
CRITICAL
CVE-2022-33231
all versions
Memory corruption due to double free in core while initializing the encryption key.
9.3
CRITICAL
CVE-2022-40531
all versions
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4
HIGH
CVE-2022-40530
all versions
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4
HIGH
CVE-2022-33278
all versions
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer
7.8
HIGH
CVE-2022-33257
all versions
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
9.3
CRITICAL
CVE-2022-33242
all versions
Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.
7.8
HIGH
CVE-2022-40514
all versions
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc respo
9.8
CRITICAL
CVE-2022-40512
all versions
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5
HIGH
CVE-2022-33306
all versions
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
7.5
HIGH
CVE-2022-33277
all versions
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4
HIGH
CVE-2022-33271
all versions
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
8.2
HIGH
CVE-2022-33232
all versions
Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory
9.3
CRITICAL
CVE-2022-40520
all versions
Memory corruption due to stack-based buffer overflow in Core
8.4
HIGH
CVE-2022-40519
all versions
Information disclosure due to buffer overread in Core
6.8
MEDIUM
CVE-2022-40518
all versions
Information disclosure due to buffer overread in Core
6.8
MEDIUM
CVE-2022-40517
all versions
Memory corruption in core due to stack-based buffer overflow
8.4
HIGH
CVE-2022-40516
all versions
Memory corruption in Core due to stack-based buffer overflow.
8.4
HIGH
CVE-2022-33286
all versions
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5
HIGH
CVE-2022-33285
all versions
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5
HIGH
CVE-2022-33284
all versions
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2
HIGH
CVE-2022-33283
all versions
Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
8.2
HIGH
CVE-2022-33276
all versions
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
8.4
HIGH
CVE-2022-33253
all versions
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
7.5
HIGH
CVE-2022-33252
all versions
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
8.2
HIGH
CVE-2022-25746
all versions
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
8.1
HIGH
CVE-2022-33238
all versions
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Sna
7.5
HIGH
CVE-2022-33235
all versions
Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto
8.2
HIGH
CVE-2022-25681
all versions
Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor tran
8.4
HIGH
CVE-2022-33239
all versions
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto
7.5
HIGH
CVE-2022-33237
all versions
Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Sna
7.5
HIGH
CVE-2022-25749
all versions
Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Sna
7.5
HIGH
CVE-2022-25748
all versions
Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Comp
9.8
CRITICAL
CVE-2022-25736
all versions
Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Comput
7.5
HIGH
CVE-2022-25665
all versions
Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdrag
6.8
MEDIUM
CVE-2022-25663
all versions
Possible buffer overflow due to lack of buffer length check during management frame Rx handling lead to denial of service in Snapd
5.5
MEDIUM
CVE-2022-25661
all versions
Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT,
8.4
HIGH
CVE-2022-25660
all versions
Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon I
7.8
HIGH
CVE-2022-25690
all versions
Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Au
7.5
HIGH
CVE-2022-22066
all versions
Memory corruption occurs while processing command received from HLOS due to improper length check in Snapdragon Auto, Snapdragon C
8.4
HIGH
CVE-2022-22069
all versions
Devices with keyprotect off may store unencrypted keybox in RPMB and cause cryptographic issue in Snapdragon Auto, Snapdragon Comp
7.7
HIGH
CVE-2022-22062
all versions
An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Com
8.2
HIGH
CVE-2021-35135
all versions
A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connecti
6.2
MEDIUM
CVE-2021-35132
all versions
Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Sna
8.4
HIGH
CVE-2021-35122
all versions
Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdrago
9.3
CRITICAL
CVE-2021-35097
all versions
Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in S
7.3
HIGH
CVE-2021-35129
all versions
Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, S
7.8
HIGH
CVE-2021-35126
all versions
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon
8.4
HIGH
CVE-2021-35094
all versions
Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdrag
7.8
HIGH
CVE-2021-30349
all versions
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto
8.2
HIGH
CVE-2021-1942
all versions
Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, S
9.3
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin