Home/Product/qualcomm sxr2150p firmware
Product

qualcomm sxr2150p firmware

50 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-22666
all versions
Memory Corruption in Audio while playing amrwbplus clips with modified content.
8.4HIGH
 CVE-2023-21652
all versions
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
7.7HIGH
 CVE-2023-21651
all versions
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3CRITICAL
 CVE-2023-21626
all versions
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1HIGH
 CVE-2022-40510
all versions
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8CRITICAL
 CVE-2022-40537
all versions
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
7.3HIGH
 CVE-2022-40531
all versions
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4HIGH
 CVE-2022-40530
all versions
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4HIGH
 CVE-2022-40515
all versions
Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.
7.3HIGH
 CVE-2022-33278
all versions
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer
7.8HIGH
 CVE-2022-33257
all versions
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
9.3CRITICAL
 CVE-2022-33242
all versions
Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.
7.8HIGH
 CVE-2022-22075
all versions
Information Disclosure in Graphics during GPU context switch.
6.2MEDIUM
 CVE-2022-40514
all versions
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc respo
9.8CRITICAL
 CVE-2022-40512
all versions
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5HIGH
 CVE-2022-33277
all versions
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4HIGH
 CVE-2022-33271
all versions
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
8.2HIGH
 CVE-2022-33232
all versions
Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory
9.3CRITICAL
 CVE-2022-40520
all versions
Memory corruption due to stack-based buffer overflow in Core
8.4HIGH
 CVE-2022-40519
all versions
Information disclosure due to buffer overread in Core
6.8MEDIUM
 CVE-2022-40518
all versions
Information disclosure due to buffer overread in Core
6.8MEDIUM
 CVE-2022-40517
all versions
Memory corruption in core due to stack-based buffer overflow
8.4HIGH
 CVE-2022-40516
all versions
Memory corruption in Core due to stack-based buffer overflow.
8.4HIGH
 CVE-2022-33286
all versions
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5HIGH
 CVE-2022-33285
all versions
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5HIGH
 CVE-2022-33284
all versions
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2HIGH
 CVE-2022-33283
all versions
Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
8.2HIGH
 CVE-2022-33276
all versions
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
8.4HIGH
 CVE-2022-33253
all versions
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
7.5HIGH
 CVE-2022-33252
all versions
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
8.2HIGH
 CVE-2022-22088
all versions
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
9.8CRITICAL
 CVE-2022-33238
all versions
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Sna
7.5HIGH
 CVE-2022-33235
all versions
Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto
8.2HIGH
 CVE-2022-33239
all versions
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto
7.5HIGH
 CVE-2022-33237
all versions
Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Sna
7.5HIGH
 CVE-2022-33234
all versions
Memory corruption in video due to configuration weakness. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdra
7.3HIGH
 CVE-2022-25741
all versions
Denial of service in WLAN due to potential null pointer dereference while accessing the memory location in Snapdragon Auto, Snapdr
7.5HIGH
 CVE-2022-25724
all versions
Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Sna
8.4HIGH
 CVE-2022-25679
all versions
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, S
6.2MEDIUM
 CVE-2022-25676
all versions
Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon
6.8MEDIUM
 CVE-2022-25749
all versions
Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Sna
7.5HIGH
 CVE-2022-25748
all versions
Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Comp
9.8CRITICAL
 CVE-2022-25736
all versions
Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Comput
7.5HIGH
 CVE-2022-25687
all versions
memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Conne
7.3HIGH
 CVE-2021-35104
all versions
Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compu
9.8CRITICAL
 CVE-2021-30349
all versions
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto
8.2HIGH
 CVE-2021-30334
all versions
Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon
8.4HIGH
 CVE-2021-30281
all versions
Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device con
8.4HIGH
 CVE-2021-1950
all versions
Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdrag
7.8HIGH
 CVE-2021-1942
all versions
Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, S
9.3CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin