Summary
| Detail | |||
|---|---|---|---|
| Vendor | Qualcomm | First view | 2021-02-22 |
| Product | wcn3620 Firmware | Last view | 2023-05-02 |
| Version | - | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:qualcomm:wcn3620_firmware | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2023-05-02 | CVE-2023-21666 | Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. |
| 7.8 | 2023-05-02 | CVE-2023-21665 | Memory corruption in Graphics while importing a file. |
| 7.8 | 2023-04-13 | CVE-2022-40532 | Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. |
| 7.5 | 2023-04-13 | CVE-2022-40503 | Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. |
| 7.8 | 2023-04-13 | CVE-2022-33302 | Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. |
| 6.8 | 2023-04-13 | CVE-2022-33289 | Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. |
| 9.8 | 2023-03-10 | CVE-2022-40537 | Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. |
| 9.8 | 2023-03-10 | CVE-2022-40515 | Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. |
| 7.8 | 2023-03-10 | CVE-2022-33245 | Memory corruption in WLAN due to use after free |
| 7.8 | 2023-03-10 | CVE-2022-33242 | Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD. |
| 8.8 | 2023-03-10 | CVE-2022-33213 | Memory corruption in modem due to buffer overflow while processing a PPP packet |
| 7.8 | 2023-03-10 | CVE-2022-25705 | Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response |
| 7.8 | 2023-03-10 | CVE-2022-25694 | Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM |
| 5.5 | 2023-03-10 | CVE-2022-22075 | Information Disclosure in Graphics during GPU context switch. |
| 8.8 | 2023-02-12 | CVE-2022-33280 | Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet. |
| 7.8 | 2023-02-12 | CVE-2022-33248 | Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. |
| 7.8 | 2023-02-12 | CVE-2022-33243 | Memory corruption due to improper access control in Qualcomm IPC. |
| 7.8 | 2023-02-12 | CVE-2022-33233 | Memory corruption due to configuration weakness in modem wile sending command to write protected files. |
| 7.8 | 2023-02-12 | CVE-2022-33225 | Memory corruption due to use after free in trusted application environment. |
| 7.8 | 2023-01-09 | CVE-2022-33266 | Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. |
| 6.5 | 2023-01-09 | CVE-2022-33255 | Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device. |
| 7.8 | 2023-01-09 | CVE-2022-25721 | Memory corruption in video driver due to type confusion error during video playback |
| 7.8 | 2023-01-09 | CVE-2022-25717 | Memory corruption in display due to double free while allocating frame buffer memory |
| 7.8 | 2023-01-09 | CVE-2022-25715 | Memory corruption in display driver due to incorrect type casting while accessing the fence structure fields |
| 8.8 | 2023-01-09 | CVE-2022-22088 | Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 16% (33) | CWE-125 | Out-of-bounds Read |
| 12% (25) | CWE-416 | Use After Free |
| 12% (24) | CWE-120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflo... |
| 11% (22) | CWE-787 | Out-of-bounds Write |
| 7% (14) | CWE-129 | Improper Validation of Array Index |
| 6% (13) | CWE-20 | Improper Input Validation |
| 5% (10) | CWE-476 | NULL Pointer Dereference |
| 5% (10) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 4% (8) | CWE-190 | Integer Overflow or Wraparound |
| 3% (6) | CWE-617 | Reachable Assertion |
| 3% (6) | CWE-415 | Double Free |
| 2% (5) | CWE-362 | Race Condition |
| 2% (4) | CWE-704 | Incorrect Type Conversion or Cast |
| 2% (4) | CWE-200 | Information Exposure |
| 1% (2) | CWE-755 | Improper Handling of Exceptional Conditions |
| 1% (2) | CWE-367 | Time-of-check Time-of-use (TOCTOU) Race Condition |
| 1% (2) | CWE-287 | Improper Authentication |
| 1% (2) | CWE-191 | Integer Underflow (Wrap or Wraparound) |
| 0% (1) | CWE-763 | Release of Invalid Pointer or Reference |
| 0% (1) | CWE-697 | Insufficient Comparison |
| 0% (1) | CWE-401 | Failure to Release Memory Before Removing Last Reference ('Memory L... |
| 0% (1) | CWE-347 | Improper Verification of Cryptographic Signature |
| 0% (1) | CWE-269 | Improper Privilege Management |
| 0% (1) | CWE-203 | Information Exposure Through Discrepancy |
| 0% (1) | CWE-131 | Incorrect Calculation of Buffer Size |
