Qualcomm Inc Snapdragon vulnerabilities
908 known vulnerabilities affecting qualcomm_inc/snapdragon.
Total CVEs
908
CISA KEV
8
actively exploited
Public exploits
0
Exploited in wild
4
Severity breakdown
CRITICAL51HIGH715MEDIUM142
Vulnerabilities
Page 34 of 46
CVE-2023-33029HIGHCVSS 7.8vAR8035vCSRA6620+127 more2023-10-03
CVE-2023-33029 [HIGH] CWE-416 CVE-2023-33029: Memory corruption in DSP Service during a remote call from HLOS to DSP.
Memory corruption in DSP Service during a remote call from HLOS to DSP.
nvd
CVE-2023-33039HIGHCVSS 7.8vQAM8295PvQAM8650P+19 more2023-10-03
CVE-2023-33039 [HIGH] CWE-416 CVE-2023-33039: Memory corruption in Automotive Display while destroying the image handle created using connected di
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.
nvd
CVE-2023-21673HIGHCVSS 7.8vAQT1000vAR8035+160 more2023-10-03
CVE-2023-21673 [HIGH] CWE-284 CVE-2023-21673: Improper Access to the VM resource manager can lead to Memory Corruption.
Improper Access to the VM resource manager can lead to Memory Corruption.
nvd
CVE-2023-22384HIGHCVSS 7.8vQCA6574AUvQCA6696+7 more2023-10-03
CVE-2023-22384 [HIGH] CWE-120 CVE-2023-22384: Memory Corruption in VR Service while sending data using Fast Message Queue (FMQ).
Memory Corruption in VR Service while sending data using Fast Message Queue (FMQ).
nvd
CVE-2023-33035HIGHCVSS 7.8vAR8035vCSRA6620+141 more2023-10-03
CVE-2023-33035 [HIGH] CWE-120 CVE-2023-33035: Memory corruption while invoking callback function of AFE from ADSP.
Memory corruption while invoking callback function of AFE from ADSP.
nvd
CVE-2023-28539HIGHCVSS 7.8vAR8035vAR9380+155 more2023-10-03
CVE-2023-28539 [HIGH] CWE-120 CVE-2023-28539: Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.
Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.
nvd
CVE-2023-22382HIGHCVSS 8.2vAPQ8064AUvMSM8996AU+27 more2023-10-03
CVE-2023-22382 [HIGH] CWE-20 CVE-2023-22382: Weak configuration in Automotive while VM is processing a listener request from TEE.
Weak configuration in Automotive while VM is processing a listener request from TEE.
nvd
CVE-2023-24844HIGHCVSS 7.8vAR8035vFastConnect 6700+41 more2023-10-03
CVE-2023-24844 [HIGH] CWE-284 CVE-2023-24844: Memory Corruption in Core while invoking a call to Access Control core library with hardware protect
Memory Corruption in Core while invoking a call to Access Control core library with hardware protected address range.
nvd
CVE-2023-24850HIGHCVSS 7.8vAPQ8017vAPQ8037+203 more2023-10-03
CVE-2023-24850 [HIGH] CWE-129 CVE-2023-24850: Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
nvd
CVE-2023-33026HIGHCVSS 7.5vAR8035vAR9380+191 more2023-10-03
CVE-2023-33026 [HIGH] CWE-126 CVE-2023-33026: Transient DOS in WLAN Firmware while parsing a NAN management frame.
Transient DOS in WLAN Firmware while parsing a NAN management frame.
nvd
CVE-2023-24849HIGHCVSS 7.5v315 5G IoT Modemv9206 LTE Modem+232 more2023-10-03
CVE-2023-24849 [HIGH] CWE-126 CVE-2023-24849: Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
nvd
CVE-2023-24843HIGHCVSS 7.5v315 5G IoT ModemvAR8035+64 more2023-10-03
CVE-2023-24843 [HIGH] CWE-617 CVE-2023-24843: Transient DOS in Modem while triggering a camping on an 5G cell.
Transient DOS in Modem while triggering a camping on an 5G cell.
nvd
CVE-2023-24853HIGHCVSS 7.8vAR8035vFastConnect 6200+110 more2023-10-03
CVE-2023-24853 [HIGH] CWE-20 CVE-2023-24853: Memory Corruption in HLOS while registering for key provisioning notify.
Memory Corruption in HLOS while registering for key provisioning notify.
nvd
CVE-2023-33027HIGHCVSS 7.5v315 5G IoT ModemvAQT1000+316 more2023-10-03
CVE-2023-33027 [HIGH] CWE-126 CVE-2023-33027: Transient DOS in WLAN Firmware while parsing rsn ies.
Transient DOS in WLAN Firmware while parsing rsn ies.
nvd
CVE-2023-28540HIGHCVSS 7.5v315 5G IoT ModemvAQT1000+150 more2023-10-03
CVE-2023-28540 [HIGH] CWE-287 CVE-2023-28540: Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
nvd
CVE-2023-28571MEDIUMCVSS 5.5vAPQ8064AUvCSRB31024+81 more2023-10-03
CVE-2023-28571 [MEDIUM] CWE-126 CVE-2023-28571: Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming sc
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
nvd
CVE-2023-28581CRITICALCVSS 9.8vFastConnect 6800vFastConnect 6900+24 more2023-09-05
CVE-2023-28581 [CRITICAL] CWE-119 CVE-2023-28581: Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
nvd
CVE-2023-28543CRITICALCVSS 9.8vSD855vSD845+2 more2023-09-05
CVE-2023-28543 [CRITICAL] CWE-125 CVE-2023-28543: A malformed DLC can trigger Memory Corruption in SNPE library due to out of bounds read, such as by
A malformed DLC can trigger Memory Corruption in SNPE library due to out of bounds read, such as by loading an untrusted model (e.g. from a remote source).
nvd
CVE-2023-28562CRITICALCVSS 9.8vAQT1000vFastConnect 6200+61 more2023-09-05
CVE-2023-28562 [CRITICAL] CWE-120 CVE-2023-28562: Memory corruption while handling payloads from remote ESL.
Memory corruption while handling payloads from remote ESL.
nvd
CVE-2023-21644HIGHCVSS 7.8vAQT1000vQCA6390+44 more2023-09-05
CVE-2023-21644 [HIGH] CWE-680 CVE-2023-21644: Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.
Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.
nvd