Qualcomm Apq5053-aa_firmware
33 CVEs affecting Qualcomm Apq5053-aa_firmware. Latest disclosed: 2024-07-01. Critical: 2, High: 29.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-33054 | Critical | 9.1 | 2023-12-05 | Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. |
CVE-2023-28540 | Critical | 9.1 | 2023-10-03 | Cryptographic issue in Data Modem due to improper authentication during TLS handshake. |
CVE-2024-21461 | High | 8.4 | 2024-07-01 | Memory corruption while performing finish HMAC operation when context is freed by keymaster. |
CVE-2023-33022 | High | 8.4 | 2023-12-05 | Memory corruption in HLOS while invoking IOCTL calls from user-space. |
CVE-2022-33275 | High | 8.4 | 2023-09-05 | Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. |
CVE-2023-28537 | High | 8.4 | 2023-08-08 | Memory corruption while allocating memory in COmxApeDec module in Audio. |
CVE-2023-21666 | High | 8.4 | 2023-05-02 | Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. |
CVE-2023-21665 | High | 8.4 | 2023-05-02 | Memory corruption in Graphics while importing a file. |
CVE-2022-40532 | High | 8.4 | 2023-04-13 | Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. |
CVE-2023-24848 | High | 8.2 | 2023-10-03 | Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. |
CVE-2023-22385 | High | 8.2 | 2023-10-03 | Memory Corruption in Data Modem while making a MO call or MT VOLTE call. |
CVE-2022-40503 | High | 8.2 | 2023-04-13 | Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. |
CVE-2022-33264 | High | 7.9 | 2023-06-06 | Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. |
CVE-2023-33087 | High | 7.8 | 2023-12-05 | Memory corruption in Core while processing RX intent request. |
CVE-2023-33079 | High | 7.8 | 2023-12-05 | Memory corruption in Audio while running invalid audio recording from ADSP. |
CVE-2023-33063 | High | 7.8 | 2023-12-05 | Memory corruption in DSP Services during a remote call from HLOS to DSP. |
CVE-2023-33018 | High | 7.8 | 2023-12-05 | Memory corruption while using the UIM diag command to get the operators name. |
CVE-2023-33017 | High | 7.8 | 2023-12-05 | Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. |
CVE-2023-33059 | High | 7.8 | 2023-11-07 | Memory corruption in Audio while processing the VOC packet data from ADSP. |
CVE-2023-33055 | High | 7.8 | 2023-11-07 | Memory Corruption in Audio while invoking callback function in driver from ADSP. |