Filtered by vendor Qualcomm
Subscriptions
Filtered by product Snapdragon X70 Modem-rf System Firmware
Subscriptions
Total
61 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-23385 | 1 Qualcomm | 90 Apq8017 Firmware, Apq8037 Firmware, Ar8035 Firmware and 87 more | 2024-11-04 | 7.5 High |
| Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE. | ||||
| CVE-2023-33018 | 1 Qualcomm | 527 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 524 more | 2024-10-10 | 7.8 High |
| Memory corruption while using the UIM diag command to get the operators name. | ||||
| CVE-2024-23362 | 1 Qualcomm | 205 9205 Lte Modem Firmware, Aqt1000 Firmware, Ar8031 Firmware and 202 more | 2024-09-05 | 7.1 High |
| Cryptographic issue while parsing RSA keys in COBR format. | ||||
| CVE-2024-23359 | 1 Qualcomm | 136 315 5g Iot Modem Firmware, 9205 Lte Modem Firmware, 9206 Lte Modem Firmware and 133 more | 2024-09-03 | 8.2 High |
| Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network. | ||||
| CVE-2024-33016 | 1 Qualcomm | 297 315 5g Iot Modem Firmware, 9205 Lte Modem Firmware, Aqt1000 Firmware and 294 more | 2024-09-03 | 6.8 Medium |
| memory corruption when an invalid firehose patch command is invoked. | ||||
| CVE-2024-23353 | 1 Qualcomm | 212 315 5g Iot Modem Firmware, 9205 Lte Modem Firmware, 9206 Lte Modem Firmware and 209 more | 2024-08-06 | 7.5 High |
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | ||||
| CVE-2024-23352 | 1 Qualcomm | 92 315 5g Iot Modem Firmware, Ar8035 Firmware, Fastconnect 6200 Firmware and 89 more | 2024-08-06 | 7.5 High |
| Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. | ||||
| CVE-2022-40536 | 1 Qualcomm | 162 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 159 more | 2024-08-03 | 7.5 High |
| Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network. | ||||
| CVE-2022-40538 | 1 Qualcomm | 26 Ar8035, Ar8035 Firmware, Qca8081 and 23 more | 2024-08-03 | 7.5 High |
| Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network. | ||||
| CVE-2022-40523 | 1 Qualcomm | 370 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 367 more | 2024-08-03 | 7.1 High |
| Information disclosure in Kernel due to indirect branch misprediction. | ||||
| CVE-2022-40521 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 481 more | 2024-08-03 | 7.5 High |
| Transient DOS due to improper authorization in Modem | ||||
| CVE-2022-40508 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 133 more | 2024-08-03 | 7.5 High |
| Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported. | ||||
| CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2024-08-03 | 8.4 High |
| Memory corruption due to double free in Core while mapping HLOS address to the list. | ||||
| CVE-2022-40504 | 1 Qualcomm | 378 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 375 more | 2024-08-03 | 7.5 High |
| Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | ||||
| CVE-2022-34144 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 133 more | 2024-08-03 | 7.5 High |
| Transient DOS due to reachable assertion in Modem during OSI decode scheduling. | ||||
| CVE-2022-33264 | 1 Qualcomm | 515 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 512 more | 2024-08-03 | 7.9 High |
| Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | ||||
| CVE-2022-33302 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 447 more | 2024-08-03 | 6.8 Medium |
| Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | ||||
| CVE-2022-33305 | 1 Qualcomm | 162 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 159 more | 2024-08-03 | 7.5 High |
| Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH. | ||||
| CVE-2022-33289 | 1 Qualcomm | 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 7wcn785x-1 and 449 more | 2024-08-03 | 6.8 Medium |
| Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | ||||
| CVE-2022-33288 | 1 Qualcomm | 256 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 253 more | 2024-08-03 | 9.3 Critical |
| Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. | ||||