High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-01	CVE-2021-1942	Out-of-bounds Write vulnerability in Qualcomm products Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking local low complexity qualcomm CWE-787	8.8
2022-04-01	CVE-2021-35105	Incorrect Type Conversion or Cast vulnerability in Qualcomm products Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-704	7.2
2022-04-01	CVE-2021-35106	Out-of-bounds Read vulnerability in Qualcomm products Possible out of bound read due to improper length calculation of WMI message. local low complexity qualcomm CWE-125	7.2
2022-02-11	CVE-2021-30317	Improper Authentication vulnerability in Qualcomm products Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking local low complexity qualcomm CWE-287	7.2
2022-02-11	CVE-2021-30322	Out-of-bounds Write vulnerability in Qualcomm products Possible out of bounds write due to improper validation of number of GPIOs configured in an internal parameters array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile local low complexity qualcomm CWE-787	7.2
2022-02-11	CVE-2021-30323	Classic Buffer Overflow vulnerability in Qualcomm products Improper validation of maximum size of data write to EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-120	7.2
2022-02-11	CVE-2021-35068	NULL Pointer Dereference vulnerability in Qualcomm products Lack of null check while freeing the device information buffer in the Bluetooth HFP protocol can lead to a NULL pointer dereference in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables network low complexity qualcomm CWE-476	7.5
2022-02-11	CVE-2021-35069	Integer Overflow or Wraparound vulnerability in Qualcomm products Improper validation of data length received from DMA buffer can lead to memory corruption. local low complexity qualcomm CWE-190	7.2
2022-01-13	CVE-2021-30308	Classic Buffer Overflow vulnerability in Qualcomm products Possible buffer overflow while printing the HARQ memory partition detail due to improper validation of buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile local low complexity qualcomm CWE-120	7.2
2022-01-13	CVE-2021-30319	Integer Overflow or Wraparound vulnerability in Qualcomm products Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music local low complexity qualcomm CWE-190	7.2