Qualcomm Mdm8615m_firmware
30 CVEs affecting Qualcomm Mdm8615m_firmware. Latest disclosed: 2024-03-04. Critical: 7, High: 21.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-25720 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C… |
CVE-2021-1975 | Critical | 9.8 | 2021-11-12 | Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S… |
CVE-2021-1972 | Critical | 9.8 | 2021-09-08 | Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CVE-2021-1920 | Critical | 9.8 | 2021-09-08 | Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu… |
CVE-2021-1916 | Critical | 9.8 | 2021-09-08 | Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdrag… |
CVE-2020-11170 | Critical | 9.8 | 2021-02-22 | Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon… |
CVE-2020-11166 | Critical | 9.1 | 2021-03-17 | Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon… |
CVE-2020-11177 | High | 8.8 | 2021-02-22 | User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdra… |
CVE-2023-33066 | High | 8.4 | 2024-03-04 | Memory corruption in Audio while processing RT proxy port register driver. |
CVE-2022-25694 | High | 8.4 | 2023-03-10 | Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM |
CVE-2022-25682 | High | 8.4 | 2022-12-13 | Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon… |
CVE-2021-35115 | High | 8.4 | 2022-04-01 | Improper handling of multiple session supported by PVM backend can lead to use after free in Snapdragon Auto, Snapdragon Mobile |
CVE-2021-30261 | High | 8.4 | 2021-09-17 | Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Sna… |
CVE-2023-24849 | High | 8.2 | 2023-10-03 | Information Disclosure in data Modem while parsing an FMTP line in an SDP message. |
CVE-2023-24848 | High | 8.2 | 2023-10-03 | Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. |
CVE-2020-11251 | High | 8.2 | 2021-04-07 | Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon Auto, Snapdragon Compute, Snap… |
CVE-2020-11191 | High | 8.2 | 2021-04-07 | Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snap… |
CVE-2022-33264 | High | 7.9 | 2023-06-06 | Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. |
CVE-2023-33018 | High | 7.8 | 2023-12-05 | Memory corruption while using the UIM diag command to get the operators name. |
CVE-2021-30268 | High | 7.8 | 2022-01-03 | Possible heap Memory Corruption Issue due to lack of input validation when sending HWTC IQ Capture command in Snapdragon Auto, Snapdragon Compute, Snapdragon C… |