) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-21626 |
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. Published: August 08, 2023; 6:15:13 AM -0400 |
V3.1: 7.1 HIGH V2.0:(not available) |
| CVE-2022-40510 |
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. Published: August 08, 2023; 6:15:12 AM -0400 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-33213 |
Memory corruption in modem due to buffer overflow while processing a PPP packet Published: March 10, 2023; 4:15:11 PM -0500 |
V3.1: 8.8 HIGH V2.0:(not available) |
| CVE-2022-25705 |
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response Published: March 10, 2023; 4:15:11 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25694 |
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM Published: March 10, 2023; 4:15:11 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-33233 |
Memory corruption due to configuration weakness in modem wile sending command to write protected files. Published: February 11, 2023; 11:15:14 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25695 |
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: December 13, 2022; 11:15:18 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25682 |
Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: December 13, 2022; 11:15:18 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25719 |
Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published: October 19, 2022; 7:15:10 AM -0400 |
V3.1: 9.1 CRITICAL V2.0:(not available) |
| CVE-2022-25718 |
Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published: October 19, 2022; 7:15:10 AM -0400 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-22091 |
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Published: September 16, 2022; 2:15:09 AM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-22062 |
An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published: September 02, 2022; 8:15:09 AM -0400 |
V3.1: 9.1 CRITICAL V2.0:(not available) |
| CVE-2021-35135 |
A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: September 02, 2022; 8:15:09 AM -0400 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
| CVE-2021-35083 |
Possible out of bound read due to improper validation of certificate chain in SSL or Internet key exchange in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: June 14, 2022; 6:15:16 AM -0400 |
V3.1: 9.1 CRITICAL V2.0: 9.4 HIGH |
| CVE-2021-35072 |
Possible buffer overflow due to improper validation of array index while processing external DIAG command in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: June 14, 2022; 6:15:15 AM -0400 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2021-30284 |
Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: November 12, 2021; 2:15:07 AM -0500 |
V3.1: 9.1 CRITICAL V2.0: 6.4 MEDIUM |
| CVE-2021-30255 |
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: November 12, 2021; 2:15:07 AM -0500 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2021-30254 |
Possible buffer overflow due to improper input validation in factory calibration and test DIAG command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: November 12, 2021; 2:15:07 AM -0500 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2021-1975 |
Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Published: November 12, 2021; 2:15:07 AM -0500 |
V3.1: 9.8 CRITICAL V2.0: 10.0 HIGH |
| CVE-2021-1973 |
A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: November 12, 2021; 2:15:07 AM -0500 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |