Snapdragon 435 Mobile Platform Firmware

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-02	CVE-2023-33030	Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in HLOS while running playready use-case. local low complexity qualcomm CWE-787	7.8
2024-01-02	CVE-2023-33033	Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Audio during playback with speaker protection. local low complexity qualcomm CWE-787	7.8
2024-01-02	CVE-2023-33110	Race Condition vulnerability in Qualcomm products The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. local high complexity qualcomm CWE-362	7.0
2023-12-05	CVE-2023-28546	Classic Buffer Overflow vulnerability in Qualcomm products Memory Corruption in SPS Application while exporting public key in sorter TA. local low complexity qualcomm CWE-120	7.8
2023-10-03	CVE-2023-24850	Improper Validation of Array Index vulnerability in Qualcomm products Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. local low complexity qualcomm CWE-129	7.8
2023-06-06	CVE-2022-22076	Unspecified vulnerability in Qualcomm products information disclosure due to cryptographic issue in Core during RPMB read request. local low complexity qualcomm	5.5
2023-06-06	CVE-2022-33264	Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. local low complexity qualcomm CWE-787	7.8
2023-06-06	CVE-2022-40521	Improper Authentication vulnerability in Qualcomm products Transient DOS due to improper authorization in Modem network low complexity qualcomm CWE-287	7.5