7.8 2023-12-05 CVE-2023-33079

Memory corruption in Audio while running invalid audio recording from ADSP.

5.5 2023-12-05 CVE-2023-33070

Transient DOS in Automotive OS due to improper authentication to the secure IO calls.

7.8 2023-12-05 CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

9.1 2023-12-05 CVE-2023-33054

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.

7.8 2023-12-05 CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8 2023-11-07 CVE-2023-33059

Memory corruption in Audio while processing the VOC packet data from ADSP.

7.8 2023-11-07 CVE-2023-33031

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.

7.8 2023-10-03 CVE-2023-33035

Memory corruption while invoking callback function of AFE from ADSP.

7.5 2023-10-03 CVE-2023-28540

Cryptographic issue in Data Modem due to improper authentication during TLS handshake.

7.8 2023-08-08 CVE-2023-28537

Memory corruption while allocating memory in COmxApeDec module in Audio.

7.8 2023-08-08 CVE-2023-22666

Memory Corruption in Audio while playing amrwbplus clips with modified content.

7.1 2023-08-08 CVE-2023-21626

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

9.8 2023-08-08 CVE-2022-40510

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

7.8 2023-06-06 CVE-2023-21670

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.

7.8 2023-06-06 CVE-2023-21657

Memoru corruption in Audio when ADSP sends input during record use case.

7.5 2023-06-06 CVE-2022-40521

Transient DOS due to improper authorization in Modem

5.5 2023-06-06 CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.8 2023-05-02 CVE-2023-21666

Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.

7.5 2023-05-02 CVE-2022-40504

Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.

7.8 2023-04-13 CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

7.5 2023-04-13 CVE-2022-40503

Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.

7.8 2023-04-13 CVE-2022-33302

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

7.8 2023-04-13 CVE-2022-33296

Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.

6.8 2023-04-13 CVE-2022-33289

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.

9.8 2020-11-12 CVE-2020-3639

u'When a non standard SIP sigcomp message is received from the network, then there may be chances of using more UDVM cycle or memory overflow' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8017, APQ8037, APQ8053, MDM9250, MDM9607, MDM9628, MDM9640, MDM9650, MSM8108, MSM8208, MSM8209, MSM8608, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, QCM4290, QCM6125, QCS410, QCS4290, QCS603, QCS605, QCS610, QCS6125, QM215, QSM8350, SA415M, SA6145P, SA6150P, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA429W, SDA640, SDA660, SDA670, SDA845, SDA855, SDM1000, SDM429, SDM429W, SDM439, SDM450, SDM455, SDM630, SDM632, SDM636, SDM640, SDM660, SDM670, SDM710, SDM712, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8350, SM8350P, SXR1120, SXR1130

15% (34) CWE-125 Out-of-bounds Read
14% (33) CWE-787 Out-of-bounds Write
13% (30) CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflo...
9% (22) CWE-190 Integer Overflow or Wraparound
8% (18) CWE-129 Improper Validation of Array Index
6% (14) CWE-416 Use After Free
5% (12) CWE-476 NULL Pointer Dereference
4% (9) CWE-20 Improper Input Validation
3% (8) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
2% (6) CWE-287 Improper Authentication
1% (4) CWE-617 Reachable Assertion
1% (4) CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition
1% (4) CWE-191 Integer Underflow (Wrap or Wraparound)
1% (3) CWE-203 Information Exposure Through Discrepancy
1% (3) CWE-200 Information Exposure
0% (2) CWE-415 Double Free
0% (2) CWE-362 Race Condition
0% (2) CWE-276 Incorrect Default Permissions
0% (1) CWE-667 Insufficient Locking
0% (1) CWE-459 Incomplete Cleanup
0% (1) CWE-404 Improper Resource Shutdown or Release
0% (1) CWE-401 Failure to Release Memory Before Removing Last Reference ('Memory L...
0% (1) CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion')
0% (1) CWE-345 Insufficient Verification of Data Authenticity
0% (1) CWE-330 Use of Insufficiently Random Values