) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-21626 |
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. Published: August 08, 2023; 6:15:13 AM -0400 |
V3.1: 7.1 HIGH V2.0:(not available) |
| CVE-2023-21625 |
Information disclosure in Network Services due to buffer over-read while the device receives DNS response. Published: August 08, 2023; 6:15:13 AM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-40510 |
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. Published: August 08, 2023; 6:15:12 AM -0400 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-33213 |
Memory corruption in modem due to buffer overflow while processing a PPP packet Published: March 10, 2023; 4:15:11 PM -0500 |
V3.1: 8.8 HIGH V2.0:(not available) |
| CVE-2022-25705 |
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response Published: March 10, 2023; 4:15:11 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25694 |
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM Published: March 10, 2023; 4:15:11 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-33248 |
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. Published: February 11, 2023; 11:15:14 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-33233 |
Memory corruption due to configuration weakness in modem wile sending command to write protected files. Published: February 11, 2023; 11:15:14 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25702 |
Denial of service in modem due to reachable assertion while processing reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Published: December 13, 2022; 11:15:18 AM -0500 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-25695 |
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: December 13, 2022; 11:15:18 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25685 |
Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Published: December 13, 2022; 11:15:18 AM -0500 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-25682 |
Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: December 13, 2022; 11:15:18 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25719 |
Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published: October 19, 2022; 7:15:10 AM -0400 |
V3.1: 9.1 CRITICAL V2.0:(not available) |
| CVE-2022-25718 |
Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published: October 19, 2022; 7:15:10 AM -0400 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-22058 |
Memory corruption due to use after free issue in kernel while processing ION handles in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: September 26, 2022; 1:15:10 PM -0400 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25670 |
Denial of service in WLAN HOST due to buffer over read while unpacking frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: September 16, 2022; 2:15:10 AM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-22074 |
Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: September 16, 2022; 2:15:09 AM -0400 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-25668 |
Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: September 02, 2022; 8:15:10 AM -0400 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-25659 |
Memory corruption due to buffer overflow while parsing MKV clips with invalid bitmap size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published: September 02, 2022; 8:15:10 AM -0400 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-22062 |
An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published: September 02, 2022; 8:15:09 AM -0400 |
V3.1: 9.1 CRITICAL V2.0:(not available) |