Qualcomm Ar6003
48 CVEs affecting Qualcomm Ar6003. Latest disclosed: 2024-11-26. Critical: 16, High: 30.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-25720 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C… |
CVE-2021-1975 | Critical | 9.8 | 2021-11-12 | Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S… |
CVE-2021-1972 | Critical | 9.8 | 2021-09-08 | Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CVE-2021-1920 | Critical | 9.8 | 2021-09-08 | Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu… |
CVE-2021-1916 | Critical | 9.8 | 2021-09-08 | Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdrag… |
CVE-2020-11170 | Critical | 9.8 | 2021-02-22 | Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon… |
CVE-2020-3691 | Critical | 9.8 | 2021-01-21 | Possible out of bound memory access in audio due to integer underflow while processing modified contents in Snapdragon Auto, Snapdragon Compute, Snapdragon Con… |
CVE-2020-3686 | Critical | 9.8 | 2021-01-21 | Possible memory out of bound issue during music playback when an incorrect bit stream content is copied into array without checking the length of array in Snap… |
CVE-2020-11143 | Critical | 9.8 | 2021-01-21 | Out of bound memory access during music playback with modified content due to copying data without checking destination buffer size in Snapdragon Auto, Snapdra… |
CVE-2020-11138 | Critical | 9.8 | 2021-01-21 | Uninitialized pointers accessed during music play back with incorrect bit stream due to an uninitialized heap memory result in instability in Snapdragon Auto… |
CVE-2020-11137 | Critical | 9.8 | 2021-01-21 | Integer multiplication overflow resulting in lower buffer size allocation than expected causes memory access out of bounds resulting in possible device instabi… |
CVE-2020-11136 | Critical | 9.8 | 2021-01-21 | Buffer Over-read in audio driver while using malloc management function due to not returning NULL for zero sized memory requirement in Snapdragon Auto, Snapdra… |
CVE-2023-43551 | Critical | 9.1 | 2024-06-03 | Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode C… |
CVE-2020-11171 | Critical | 9.1 | 2021-03-17 | Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon C… |
CVE-2020-11166 | Critical | 9.1 | 2021-03-17 | Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon… |
CVE-2020-11144 | Critical | 9.1 | 2021-01-21 | Buffer over-read while UE process invalid DL ROHC packet for decompression due to lack of check of size of compresses packet in Snapdragon Auto, Snapdragon Com… |
CVE-2020-11177 | High | 8.8 | 2021-02-22 | User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdra… |
CVE-2017-18153 | High | 8.4 | 2024-11-26 | A race condition exists in a driver potentially leading to a use-after-free condition. |
CVE-2023-33066 | High | 8.4 | 2024-03-04 | Memory corruption in Audio while processing RT proxy port register driver. |
CVE-2022-25694 | High | 8.4 | 2023-03-10 | Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM |