Qualcomm Inc Snapdragon vulnerabilities

CVE-2022-25739 [HIGH] CWE-476 CVE-2022-25739: Denial of service in modem due to missing null check while processing the ipv6 packet received durin Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call

CVE-2022-25737 [HIGH] CWE-457 CVE-2022-25737: Information disclosure in modem due to missing NULL check while reading packets received from local Information disclosure in modem due to missing NULL check while reading packets received from local network

CVE-2022-33270 [MEDIUM] CWE-367 CVE-2022-33270: Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfig Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.

CVE-2022-33297 [MEDIUM] CWE-126 CVE-2022-33297: Information disclosure due to buffer overread in Linux sensors Information disclosure due to buffer overread in Linux sensors

CVE-2022-33289 [MEDIUM] CWE-129 CVE-2022-33289: Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is s Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.

CVE-2022-40537 [CRITICAL] CWE-129 CVE-2022-40537: Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP re Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.

CVE-2022-33256 [CRITICAL] CWE-129 CVE-2022-33256: Memory corruption due to improper validation of array index in Multi-mode call processor. Memory corruption due to improper validation of array index in Multi-mode call processor.

CVE-2022-40515 [CRITICAL] CWE-415 CVE-2022-40515: Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.

CVE-2022-33250 [HIGH] CWE-617 CVE-2022-33250: Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message conta Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.

CVE-2022-33257 [HIGH] CWE-367 CVE-2022-33257: Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.

CVE-2022-25709 [HIGH] CWE-823 CVE-2022-25709: Memory corruption in modem due to use of out of range pointer offset while processing qmi msg Memory corruption in modem due to use of out of range pointer offset while processing qmi msg

CVE-2022-33244 [HIGH] CWE-617 CVE-2022-33244: Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout

CVE-2022-40540 [HIGH] CWE-120 CVE-2022-40540: Memory corruption due to buffer copy without checking the size of input while loading firmware in Li Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.

CVE-2022-33272 [HIGH] CWE-617 CVE-2022-33272: Transient DOS in modem due to reachable assertion. Transient DOS in modem due to reachable assertion.

CVE-2022-40527 [HIGH] CWE-617 CVE-2022-40527: Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM. Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.

CVE-2022-40530 [HIGH] CWE-680 CVE-2022-40530: Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization p Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.

CVE-2022-25705 [HIGH] CWE-680 CVE-2022-25705: Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response

CVE-2022-40539 [HIGH] CWE-284 CVE-2022-40539: Memory corruption in Automotive Android OS due to improper validation of array index. Memory corruption in Automotive Android OS due to improper validation of array index.

CVE-2022-40535 [HIGH] CWE-126 CVE-2022-40535: Transient DOS due to buffer over-read in WLAN while sending a packet to device. Transient DOS due to buffer over-read in WLAN while sending a packet to device.

CVE-2022-33242 [HIGH] CWE-287 CVE-2022-33242: Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.