CVSS: 8.4EPSS: 0%CPEs: 408EXPL: 0CVE-2022-25682
https://notcve.org/view.php?id=CVE-2022-25682
13 Dec 2022 — Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM UIM debido al uso de un desplazamiento del puntero fuera de rango al decodificar el comando de la tarjeta en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.4EPSS: 0%CPEs: 394EXPL: 0CVE-2022-25695
https://notcve.org/view.php?id=CVE-2022-25695
13 Dec 2022 — Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM debido a una validación incorrecta del índice de matriz mientras se procesan comandos proactivos GSTK en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 10.0EPSS: 0%CPEs: 32EXPL: 0CVE-2022-25674
https://notcve.org/view.php?id=CVE-2022-25674
15 Nov 2022 — Cryptographic issues in WLAN during the group key handshake of the WPA/WPA2 protocol in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Problemas criptográficos en WLAN durante el handshake de claves del grupo del protocolo WPA/WPA2 en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin •
CVSS: 10.0EPSS: 0%CPEs: 42EXPL: 0CVE-2022-25727
https://notcve.org/view.php?id=CVE-2022-25727
15 Nov 2022 — Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Corrupción de la memoria en el módem debido a una verificación de longitud incorrecta al copiar en la memoria en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2022-25742
https://notcve.org/view.php?id=CVE-2022-25742
15 Nov 2022 — Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Denegación de Servicio (DoS) en el módem debido a un bucle infinito mientras se analiza el paquete IGMPv2 del servidor en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 10.0EPSS: 0%CPEs: 284EXPL: 0CVE-2022-25718
https://notcve.org/view.php?id=CVE-2022-25718
19 Oct 2022 — Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un problema criptográfico en WLAN debido a una comprobación incorrecta del valor de retorno mientras es realizado el intercambio de autenticac... • https://www.qualcomm.com/company/product-security/bulletins/october-2022-bulletin • CWE-252: Unchecked Return Value •
CVSS: 9.4EPSS: 0%CPEs: 236EXPL: 0CVE-2022-25719
https://notcve.org/view.php?id=CVE-2022-25719
19 Oct 2022 — Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una revelación de información en WLAN debido a una comprobación de longitud incorrecta mientras es procesado el apretón de manos de auten... • https://www.qualcomm.com/company/product-security/bulletins/october-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 8.2EPSS: 0%CPEs: 282EXPL: 0CVE-2021-30349
https://notcve.org/view.php?id=CVE-2021-30349
14 Jun 2022 — Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una secuencia de control de acceso inapropiada para la base de datos AC después de la asignación de memoria puede conllevar a una posible corrupción de la memoria en Snapdragon Auto, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin •
CVSS: 7.8EPSS: 0%CPEs: 294EXPL: 0CVE-2021-30344
https://notcve.org/view.php?id=CVE-2021-30344
14 Jun 2022 — Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una autorización inapropiada de un comando de modo de seguridad LTE reproducido puede conllevar a una denegación de servicio en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industri... • https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin •
CVSS: 9.1EPSS: 0%CPEs: 190EXPL: 0CVE-2021-30342
https://notcve.org/view.php?id=CVE-2021-30342
14 Jun 2022 — Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Una comprobación de integridad inapropiada puede conllevar a una condición de carrera entre las tareas PDCP y RRC? después de que haya sido recibido un paquete de comando RRC válido en Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer ... • https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •