) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:o:qualcomm:snapdragon_x12_lte_modem_firmware:-:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-43513 |
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. Published: February 06, 2024; 1:16:01 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-43511 |
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. Published: January 02, 2024; 1:15:13 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-33120 |
Memory corruption in Audio when memory map command is executed consecutively in ADSP. Published: January 02, 2024; 1:15:12 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33118 |
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. Published: January 02, 2024; 1:15:12 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33117 |
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. Published: January 02, 2024; 1:15:12 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33113 |
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. Published: January 02, 2024; 1:15:12 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33112 |
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. Published: January 02, 2024; 1:15:11 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-33110 |
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. Published: January 02, 2024; 1:15:11 AM -0500 |
V4.0:(not available) V3.1: 7.0 HIGH V2.0:(not available) |
| CVE-2023-33085 |
Memory corruption in wearables while processing data from AON. Published: January 02, 2024; 1:15:10 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33033 |
Memory corruption in Audio during playback with speaker protection. Published: January 02, 2024; 1:15:09 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33030 |
Memory corruption in HLOS while running playready use-case. Published: January 02, 2024; 1:15:09 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33107 |
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call. Published: December 04, 2023; 10:15:14 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33106 |
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND. Published: December 04, 2023; 10:15:14 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33080 |
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. Published: December 04, 2023; 10:15:12 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-33063 |
Memory corruption in DSP Services during a remote call from HLOS to DSP. Published: December 04, 2023; 10:15:12 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33054 |
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. Published: December 04, 2023; 10:15:11 PM -0500 |
V4.0:(not available) V3.1: 9.1 CRITICAL V2.0:(not available) |
| CVE-2023-33053 |
Memory corruption in Kernel while parsing metadata. Published: December 04, 2023; 10:15:11 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33018 |
Memory corruption while using the UIM diag command to get the operators name. Published: December 04, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-33017 |
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. Published: December 04, 2023; 10:15:10 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-28586 |
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. Published: December 04, 2023; 10:15:09 PM -0500 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available) |