Qualcomm Qcs405_firmware
468 CVEs affecting Qualcomm Qcs405_firmware. Latest disclosed: 2024-11-22. Critical: 103, High: 302.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-40510 | Critical | 9.8 | 2023-08-08 | Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. |
CVE-2022-40514 | Critical | 9.8 | 2023-02-12 | Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
CVE-2022-25729 | Critical | 9.8 | 2023-02-12 | Memory corruption in modem due to improper length check while copying into memory |
CVE-2022-22088 | Critical | 9.8 | 2023-01-09 | Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote |
CVE-2022-25727 | Critical | 9.8 | 2022-11-15 | Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Mus… |
CVE-2022-25748 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2022-25720 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C… |
CVE-2022-25651 | Critical | 9.8 | 2022-06-14 | Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Indust… |
CVE-2021-35104 | Critical | 9.8 | 2022-06-14 | Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-30351 | Critical | 9.8 | 2022-01-03 | An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapdragon Auto, Snapdragon Comput… |
CVE-2021-1976 | Critical | 9.8 | 2021-09-17 | A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-1972 | Critical | 9.8 | 2021-09-08 | Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CVE-2020-11134 | Critical | 9.8 | 2021-06-09 | Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NA… |
CVE-2020-11299 | Critical | 9.8 | 2021-03-17 | Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT… |
CVE-2020-11272 | Critical | 9.8 | 2021-02-22 | Before enqueuing a frame to the PE queue for further processing, an entry in a hash table can be deleted and using a stale version later can lead to use after… |
CVE-2020-11170 | Critical | 9.8 | 2021-02-22 | Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon… |
CVE-2020-11196 | Critical | 9.8 | 2020-11-12 | u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon Auto, Snapdragon Compute, Snap… |
CVE-2020-11193 | Critical | 9.8 | 2020-11-12 | u'Buffer over read can happen while parsing mkv clip due to improper typecasting of data returned from atomsize' in Snapdragon Auto, Snapdragon Compute, Snapdr… |
CVE-2020-11168 | Critical | 9.8 | 2020-11-12 | u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to access the buffer beyond its range' in Snapdragon Auto, Snapdrag… |
CVE-2020-3703 | Critical | 9.8 | 2020-11-02 | u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is… |