High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-02	CVE-2022-22080	Out-of-bounds Write vulnerability in Qualcomm products Improper validation of backend id in PCM routing process can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music local low complexity qualcomm CWE-787	7.8
2022-09-02	CVE-2022-22098	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm Apq8096Au Firmware Memory corruption in multimedia driver due to untrusted pointer dereference while reading data from socket in Snapdragon Auto local low complexity qualcomm CWE-119	7.8
2022-09-02	CVE-2022-22100	Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto local low complexity qualcomm CWE-787	7.8
2022-09-02	CVE-2022-22104	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in multimedia due to improper check on the messages received. local low complexity qualcomm CWE-119	7.8
2022-06-14	CVE-2021-30342	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables network qualcomm CWE-367	7.1
2022-06-14	CVE-2021-30344	Unspecified vulnerability in Qualcomm products Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables network low complexity qualcomm	7.5
2022-06-14	CVE-2021-35072	Improper Validation of Array Index vulnerability in Qualcomm products Possible buffer overflow due to improper validation of array index while processing external DIAG command in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-129	7.2
2022-06-14	CVE-2021-35100	Out-of-bounds Read vulnerability in Qualcomm products Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables network low complexity qualcomm CWE-125	7.8
2022-06-14	CVE-2022-22064	Out-of-bounds Read vulnerability in Qualcomm products Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables network low complexity qualcomm CWE-125	7.8
2022-06-14	CVE-2022-22065	Out-of-bounds Read vulnerability in Qualcomm products Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables network low complexity qualcomm CWE-125	7.8