CVSS: 7.1EPSS: 0%CPEs: 696EXPL: 0CVE-2022-22076 – Cryptographic issue in Core
https://notcve.org/view.php?id=CVE-2022-22076
06 Jun 2023 — information disclosure due to cryptographic issue in Core during RPMB read request. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-310: Cryptographic Issues •
CVSS: 8.4EPSS: 0%CPEs: 476EXPL: 0CVE-2022-25655 – Buffer copy without checking the size of input in WLAN HAL.
https://notcve.org/view.php?id=CVE-2022-25655
07 Mar 2023 — Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 568EXPL: 0CVE-2022-33238
https://notcve.org/view.php?id=CVE-2022-33238
13 Dec 2022 — Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking DOS transitorio debido a un bucle con condición de salida inalcanzable en WLAN mientras se procesan tramas FTM e... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 9.0EPSS: 0%CPEs: 120EXPL: 0CVE-2022-25652
https://notcve.org/view.php?id=CVE-2022-25652
16 Sep 2022 — Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking Unos problemas criptográficos en BSP debido a una verificación de hash incorrecta en Snapdragon Wired Infrastructure and Networking • https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 0%CPEs: 352EXPL: 0CVE-2021-35104
https://notcve.org/view.php?id=CVE-2021-35104
14 Jun 2022 — Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible desbordamiento del búfer debido al análisis incorrecto de los encabezados mientras es reproducido el clip de audio FLAC en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon... • https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 342EXPL: 0CVE-2021-35071
https://notcve.org/view.php?id=CVE-2021-35071
14 Jun 2022 — Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible lectura excesiva del búfer debido a una falta de comprobación del tamaño mientras se copian datos del búfer DBR al búfer RX y puede conllevar a una denegación de servicio en Snapdra... • https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 9.1EPSS: 0%CPEs: 370EXPL: 0CVE-2021-35088
https://notcve.org/view.php?id=CVE-2021-35088
01 Apr 2022 — Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible lectura fuera de límites debido a una comprobación inapropiada de la longitud de IE durante el análisis de SSID IE cuando el canal es DFS en Snapdragon Auto, Snapdragon Compute, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/march-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 382EXPL: 0CVE-2021-35069
https://notcve.org/view.php?id=CVE-2021-35069
11 Feb 2022 — Improper validation of data length received from DMA buffer can lead to memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una comprobación inapropiada de la longitud de los datos recibidos del búfer DMA puede conllevar a una corrupción de la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer... • https://www.qualcomm.com/company/product-security/bulletins/february-2022-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.7EPSS: 0%CPEs: 318EXPL: 0CVE-2021-30325
https://notcve.org/view.php?id=CVE-2021-30325
11 Feb 2022 — Possible out of bound access of DCI resources due to lack of validation process and resource allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible acceso fuera de límites de los recursos DCI debido a una falta de proceso de comprobación y asignación de recursos en Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon ... • https://www.qualcomm.com/company/product-security/bulletins/february-2022-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 6.7EPSS: 0%CPEs: 302EXPL: 0CVE-2021-30324
https://notcve.org/view.php?id=CVE-2021-30324
11 Feb 2022 — Possible out of bound write due to lack of boundary check for the maximum size of buffer when sending a DCI packet to remote process in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible escritura fuera de límites debido a una falta de comprobación del tamaño máximo del búfer cuando es enviado un paquete DCI a un proceso remoto en Snapdragon Auto... • https://www.qualcomm.com/company/product-security/bulletins/february-2022-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •