Qualcomm Inc Snapdragon vulnerabilities
940 known vulnerabilities affecting qualcomm_inc/snapdragon.
Total CVEs
940
CISA KEV
8
actively exploited
Public exploits
2
Exploited in wild
8
Severity breakdown
CRITICAL52HIGH738MEDIUM150
Vulnerabilities
Page 45 of 47
CVE-2017-18306P4MEDIUMCVSS 5.5vSD 450vSD 625+5 more2024-11-26
CVE-2017-18306 [MEDIUM] CWE-200 CVE-2017-18306: Information disclosure due to uninitialized variable.
Information disclosure due to uninitialized variable.
nvd
CVE-2017-18307P4MEDIUMCVSS 5.5vSD 450vSD 625+5 more2024-11-26
CVE-2017-18307 [MEDIUM] CWE-200 CVE-2017-18307: Information disclosure possible while audio playback.
Information disclosure possible while audio playback.
nvd
CVE-2022-40523P4MEDIUMCVSS 5.5v9205 LTE ModemvAQT1000+177 more2023-06-06
CVE-2022-40523 [MEDIUM] CWE-200 CVE-2022-40523: Information disclosure in Kernel due to indirect branch misprediction.
Information disclosure in Kernel due to indirect branch misprediction.
nvd
CVE-2022-22076P4MEDIUMCVSS 5.5v315 5G IoT Modemv9205 LTE Modem+339 more2023-06-06
CVE-2022-22076 [MEDIUM] CWE-310 CVE-2022-22076: information disclosure due to cryptographic issue in Core during RPMB read request.
information disclosure due to cryptographic issue in Core during RPMB read request.
nvd
CVE-2022-33297P4MEDIUMCVSS 5.5vQCA6310vQCA6320+8 more2023-04-13
CVE-2022-33297 [MEDIUM] CWE-126 CVE-2022-33297: Information disclosure due to buffer overread in Linux sensors
Information disclosure due to buffer overread in Linux sensors
nvd
CVE-2022-40518P4MEDIUMCVSS 5.5vAQT1000vAR8031+158 more2023-01-09
CVE-2022-40518 [MEDIUM] CWE-125 CVE-2022-40518: Information disclosure due to buffer overread in Core
Information disclosure due to buffer overread in Core
nvd
CVE-2022-40519P4MEDIUMCVSS 5.5vAQT1000vAR8031+191 more2023-01-09
CVE-2022-40519 [MEDIUM] CWE-125 CVE-2022-40519: Information disclosure due to buffer overread in Core
Information disclosure due to buffer overread in Core
nvd
CVE-2022-25722P4MEDIUMCVSS 5.5vAPQ8096AUvAR9380+76 more2023-01-09
CVE-2022-25722 [MEDIUM] CWE-416 CVE-2022-25722: Information exposure in DSP services due to improper handling of freeing memory
Information exposure in DSP services due to improper handling of freeing memory
nvd
CVE-2023-21624P4MEDIUMCVSS 5.5vFastConnect 6700vFastConnect 6800+65 more2023-07-04
CVE-2023-21624 [MEDIUM] CWE-200 CVE-2023-21624: Information disclosure in DSP Services while loading dynamic module.
Information disclosure in DSP Services while loading dynamic module.
nvd
CVE-2023-43528P4MEDIUMCVSS 5.5vAR8035vC-V2X 9150+89 more2024-05-06
CVE-2023-43528 [MEDIUM] CWE-126 CVE-2023-43528: Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manag
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
nvd
CVE-2023-33111P4MEDIUMCVSS 5.5vAR8035vC-V2X 9150+84 more2024-04-01
CVE-2023-33111 [MEDIUM] CWE-129 CVE-2023-33111: Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the r
Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.
nvd
CVE-2022-33220P4MEDIUMCVSS 5.5vAQT1000vQAM8295P+43 more2023-09-05
CVE-2022-33220 [MEDIUM] CWE-126 CVE-2022-33220: Information disclosure in Automotive multimedia due to buffer over-read.
Information disclosure in Automotive multimedia due to buffer over-read.
nvd
CVE-2024-43051P4MEDIUMCVSS 5.5vAQT1000vAR8031+242 more2025-03-03
CVE-2024-43051 [MEDIUM] CWE-285 CVE-2024-43051: Information disclosure while deriving keys for a session for any Widevine use case.
Information disclosure while deriving keys for a session for any Widevine use case.
nvd
CVE-2024-33067P4MEDIUMCVSS 5.5vAR8035vC-V2X 9150+75 more2025-01-06
CVE-2024-33067 [MEDIUM] CWE-126 CVE-2024-33067: Information disclosure while invoking callback function of sound model driver from ADSP for every va
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
nvd
CVE-2023-33037P4MEDIUMCVSS 5.5vAR8035vFastConnect 6200+81 more2024-01-02
CVE-2023-33037 [MEDIUM] CWE-310 CVE-2023-33037: Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.
Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.
nvd
CVE-2025-47369P4MEDIUMCVSS 5.5vAR8035vCSRA6620+173 more2026-01-07
CVE-2025-47369 [MEDIUM] CWE-200 CVE-2025-47369: Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL
Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.
nvd
CVE-2022-33286P4MEDIUMCVSS 6.5vAPQ8009vAPQ8017+279 more2023-01-09
CVE-2022-33286 [MEDIUM] CWE-125 CVE-2022-33286: Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
nvd
CVE-2022-33285P4MEDIUMCVSS 6.5vAPQ8009vAPQ8017+276 more2023-01-09
CVE-2022-33285 [MEDIUM] CWE-125 CVE-2022-33285: Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
nvd
CVE-2023-33070P4MEDIUMCVSS 5.5vAQT1000vAR8031+98 more2023-12-05
CVE-2023-33070 [MEDIUM] CWE-287 CVE-2023-33070: Transient DOS in Automotive OS due to improper authentication to the secure IO calls.
Transient DOS in Automotive OS due to improper authentication to the secure IO calls.
nvd
CVE-2023-28568P4MEDIUMCVSS 5.5vAQT1000vFastConnect 6200+89 more2023-11-07
CVE-2023-28568 [MEDIUM] CWE-126 CVE-2023-28568: Information disclosure in WLAN HAL when reception status handler is called.
Information disclosure in WLAN HAL when reception status handler is called.
nvd