Pm8937 Firmware

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-08	CVE-2022-40510	Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. network low complexity qualcomm CWE-787 critical	9.8
2023-08-08	CVE-2023-21626	Improper Authentication vulnerability in Qualcomm products Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. local low complexity qualcomm CWE-287	7.1
2023-06-06	CVE-2022-22076	Unspecified vulnerability in Qualcomm products information disclosure due to cryptographic issue in Core during RPMB read request. local low complexity qualcomm	5.5
2023-04-13	CVE-2022-40532	Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. local low complexity qualcomm CWE-190	7.8
2022-10-19	CVE-2022-25718	Unchecked Return Value vulnerability in Qualcomm products Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking network low complexity qualcomm CWE-252 critical	9.8
2022-10-19	CVE-2022-25719	Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking network low complexity qualcomm CWE-125 critical	9.1
2022-09-26	CVE-2022-22058	Use After Free vulnerability in Qualcomm products Memory corruption due to use after free issue in kernel while processing ION handles in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-416	7.8
2022-09-16	CVE-2022-22074	Integer Overflow or Wraparound vulnerability in Qualcomm products Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-190	7.8
2022-09-16	CVE-2022-25670	Out-of-bounds Read vulnerability in Qualcomm products Denial of service in WLAN HOST due to buffer over read while unpacking frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables network low complexity qualcomm CWE-125	7.5
2022-09-02	CVE-2021-35135	NULL Pointer Dereference vulnerability in Qualcomm products A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-476	5.5