qcn7606_firmware

Published Jun 9, 2021

Page 1 of 9

CVE-2020-11272

qualcomm / apq8009_firmware+347

Before enqueuing a frame to the PE queue for further processing, an entry in a hash table can be deleted and using a stale version later can lead to use after free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Published Feb 22, 2021

CVE-2023-28561

qualcomm / qcn7606_firmware

Memory corruption in QESL while processing payload from external ESL device to firmware.

Published Aug 8, 2023

CVE-2022-25720

qualcomm / apq8009_firmware+184

Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Published Oct 19, 2022

CVE-2021-35081

qualcomm / aqt1000_firmware+72

Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Published Jun 14, 2022

CVE-2023-28562

qualcomm / aqt1000_firmware+67

Memory corruption while handling payloads from remote ESL.

Published Sep 5, 2023

CVE-2022-25748

qualcomm / apq8009_firmware+272

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Published Oct 19, 2022

CVE-2022-22088

qualcomm / apq8009_firmware+149

Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote

Published Jan 9, 2023

CVE-2022-33231

qualcomm / 8998_firmware+218

Memory corruption due to double free in core while initializing the encryption key.

Published Apr 13, 2023

CVE-2023-33072

qualcomm / 315_5g_iot_modem_firmware+247

Memory corruption in Core while processing control functions.

Published Feb 6, 2024

CVE-2022-33257

qualcomm / aqt1000_firmware+139

Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.

Published Mar 10, 2023

CVE-2023-21651

qualcomm / aqt1000_firmware+139

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

Published Aug 8, 2023

CVE-2023-33030

qualcomm / 315_5g_iot_modem_firmware+300

Memory corruption in HLOS while running playready use-case.

Published Jan 2, 2024

CVE-2021-30317

qualcomm / aqt1000_firmware+113

Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Published Feb 11, 2022

CVE-2020-11159

qualcomm / apq8009_firmware+502

Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Published Jun 9, 2021

CVE-2020-11301

qualcomm / apq8009_firmware+268

Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Published Sep 8, 2021

CVE-2020-11276

qualcomm / apq8009_firmware+514

Possible buffer over read while processing P2P IE and NOA attribute of beacon and probe response frames due to improper validation of P2P IE and NOA attribute lengths in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Published Feb 22, 2021

CVE-2020-11169

qualcomm / apq8009_firmware+10

u'Buffer over-read while processing received L2CAP packet due to lack of integer overflow check' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, QCA6390, QCN7605, QCN7606, SA415M, SA515M, SA6155P, SA8155P, SC8180X, SDX55

Published Nov 2, 2020

CVE-2020-11126

qualcomm / apq8096au_firmware+390

Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Published Jun 9, 2021

CVE-2020-11275

qualcomm / apq8009_firmware+472

Possible buffer over-read while parsing quiet IE in Rx beacon frame due to improper check of IE length in received beacon in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking