Summary
| Detail | |||
|---|---|---|---|
| Vendor | Qualcomm | First view | 2023-07-04 |
| Product | Snapdragon 888 5g Firmware | Last view | 2025-03-03 |
| Version | - | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:qualcomm:snapdragon_888_5g_firmware | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2025-03-03 | CVE-2025-21424 | Memory corruption while calling the NPU driver APIs concurrently. |
| 7.5 | 2025-03-03 | CVE-2024-53027 | Transient DOS may occur while processing the country IE. |
| 7.8 | 2025-03-03 | CVE-2024-53024 | Memory corruption in display driver while detaching a device. |
| 7.8 | 2025-03-03 | CVE-2024-53014 | Memory corruption may occur while validating ports and channels in Audio driver. |
| 7.8 | 2025-03-03 | CVE-2024-43057 | Memory corruption while processing command in Glink linux. |
| 6.5 | 2025-03-03 | CVE-2024-43056 | Transient DOS during hypervisor virtual I/O operation in a virtual machine. |
| 5.5 | 2025-03-03 | CVE-2024-43051 | Information disclosure while deriving keys for a session for any Widevine use case. |
| 7.5 | 2024-09-02 | CVE-2024-33051 | Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. |
| 7.5 | 2024-09-02 | CVE-2024-33050 | Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. |
| 7.8 | 2024-09-02 | CVE-2024-33045 | Memory corruption when BTFM client sends new messages over Slimbus to ADSP. |
| 7.8 | 2024-09-02 | CVE-2024-33042 | Memory corruption when Alternative Frequency offset value is set to 255. |
| 7.8 | 2023-09-05 | CVE-2023-33021 | Memory corruption in Graphics while processing user packets for command submission. |
| 7.5 | 2023-09-05 | CVE-2023-33015 | Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. |
| 7.8 | 2023-09-05 | CVE-2023-28573 | Memory corruption in WLAN HAL while parsing WMI command parameters. |
| 7.8 | 2023-09-05 | CVE-2023-28567 | Memory corruption in WLAN HAL while handling command through WMI interfaces. |
| 7.8 | 2023-07-04 | CVE-2023-28542 | Memory Corruption in WLAN HOST while fetching TX status information. |
| 7.8 | 2023-07-04 | CVE-2023-24854 | Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message. |
| 7.8 | 2023-07-04 | CVE-2023-24851 | Memory Corruption in WLAN HOST while parsing QMI response message from firmware. |
| 7.8 | 2023-07-04 | CVE-2023-22667 | Memory Corruption in Audio while allocating the ion buffer during the music playback. |
| 7.8 | 2023-07-04 | CVE-2023-22387 | Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. |
| 7.8 | 2023-07-04 | CVE-2023-22386 | Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. |
| 9.8 | 2023-07-04 | CVE-2023-21631 | Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. |
| 6.8 | 2023-07-04 | CVE-2023-21629 | Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 31% (7) | CWE-787 | Out-of-bounds Write |
| 22% (5) | CWE-125 | Out-of-bounds Read |
| 13% (3) | CWE-416 | Use After Free |
| 4% (1) | CWE-476 | NULL Pointer Dereference |
| 4% (1) | CWE-415 | Double Free |
| 4% (1) | CWE-285 | Improper Access Control (Authorization) |
| 4% (1) | CWE-190 | Integer Overflow or Wraparound |
| 4% (1) | CWE-129 | Improper Validation of Array Index |
| 4% (1) | CWE-126 | Buffer Over-read |
| 4% (1) | CWE-120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflo... |
