Qualcomm: >> Sm4350 Firmware Security Vulnerabilities
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
CVSS Score
8.2
EPSS Score
0.001
Published
2023-04-13
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.
CVSS Score
5.9
EPSS Score
0.0
Published
2023-04-13
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
CVSS Score
6.8
EPSS Score
0.0
Published
2023-04-13
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-04-13
Memory corruption due to double free in core while initializing the encryption key.
CVSS Score
9.3
EPSS Score
0.0
Published
2023-04-13
Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CVSS Score
7.8
EPSS Score
0.0
Published
2021-06-09
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CVSS Score
7.8
EPSS Score
0.0
Published
2021-06-09
Possible heap overflow while parsing NAL header due to lack of check of length of data received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
CVSS Score
9.8
EPSS Score
0.004
Published
2021-06-09
Possible Buffer over-read in ARP/NS parsing due to lack of check of packet length received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-09
Use after free issue when importing a DMA buffer by using the CPU address of the buffer due to attachment is not cleaned up properly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVSS Score
7.8
EPSS Score
0.001
Published
2021-06-09