Vulnerabilities > Qualcomm > Snapdragon 8 GEN 1 Mobile Platform Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-02 | CVE-2023-33110 | Race Condition vulnerability in Qualcomm products The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. | 7.0 |
2024-01-02 | CVE-2023-33112 | Unspecified vulnerability in Qualcomm products Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. | 7.5 |
2024-01-02 | CVE-2023-33113 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. | 7.8 |
2024-01-02 | CVE-2023-43511 | Infinite Loop vulnerability in Qualcomm products Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | 7.5 |
2023-12-05 | CVE-2023-28546 | Classic Buffer Overflow vulnerability in Qualcomm products Memory Corruption in SPS Application while exporting public key in sorter TA. | 7.8 |
2023-12-05 | CVE-2023-28550 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in MPP performance while accessing DSM watermark using external memory address. | 7.8 |
2023-12-05 | CVE-2023-28551 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. | 7.8 |
2023-12-05 | CVE-2023-28579 | Classic Buffer Overflow vulnerability in Qualcomm products Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length. | 7.8 |
2023-12-05 | CVE-2023-28580 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Host while setting the PMK length in PMK length in internal cache. | 7.8 |
2023-12-05 | CVE-2023-28585 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption while loading an ELF segment in TEE Kernel. | 8.8 |