sd680_firmware

Page 1 of 6

CVE-2022-40514

qualcomm / aqt1000_firmware+228

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.

Published Feb 12, 2023

CVE-2022-22096

qualcomm / aqt1000_firmware+56

Memory corruption in Bluetooth HOST due to stack-based buffer overflow when when extracting data using command length parameter in Snapdragon Connectivity, Snapdragon Mobile

CVE-2022-22088

qualcomm / apq8009_firmware+149

Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote

Published Jan 9, 2023

CVE-2022-25748

qualcomm / apq8009_firmware+272

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Published Oct 19, 2022

CVE-2022-40510

qualcomm / apq8009_firmware+203

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

qualcomm / aqt1000_firmware+139

Published Aug 8, 2023

CVE-2022-33257

CRITICAL9.3

Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.

qualcomm / aqt1000_firmware+100

Published Mar 10, 2023

CVE-2021-35122

CRITICAL9.3

Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

qualcomm / aqt1000_firmware+139

CVE-2023-21651

CRITICAL9.3

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

qualcomm / apq8009w_firmware+94

Published Aug 8, 2023

CVE-2021-30342

CRITICAL9.1

Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

qualcomm / ar8035_firmware+54

CVE-2021-30339

CRITICAL9.0

Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CVE-2021-30350

qualcomm / aqt1000_firmware+95

Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

CVE-2022-25682

qualcomm / apq8009_firmware+203

Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Published Dec 13, 2022

CVE-2023-28538

qualcomm / aqt1000_firmware+129

Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.

Published Sep 5, 2023

CVE-2022-25743

qualcomm / apq8009_firmware+188

Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Published Nov 15, 2022

CVE-2022-22084

qualcomm / apq8009_firmware+152

Memory corruption when extracting qcp audio file due to lack of check on data length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CVE-2021-35132

qualcomm / aqt1000_firmware+109

Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CVE-2022-22085

qualcomm / apq8009_firmware+154

Memory corruption in video due to buffer overflow while reading the dts file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CVE-2022-22080

qualcomm / apq8053_firmware+114

Improper validation of backend id in PCM routing process can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CVE-2022-22057

qualcomm / apq8053_firmware+79

Use after free in graphics fence due to a race condition while closing fence file descriptor and destroy graphics timeline simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables