ByteOS

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 10.01%

7 Day CHG~0.00%

Published-18 Jan, 2019 | 22:00

Updated-05 Aug, 2024 | 05:47

Improper input validation in the QTEE keymaster app can lead to invalid memory access in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 410/12, SD 615/16/SD 415, SD 800, SD 810

CWE ID-CWE-20

Improper Input Validation

CVE-2019-14010

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.24% / 47.68%

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-05 Aug, 2024 | 00:05

The device may enter into error state when some tool or application gets failure at 1st buffer map all and performs 2nd buffer map which happens to be at same physical address in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

CWE ID-CWE-20

Improper Input Validation

CVE-2023-24853

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.03% / 6.78%

7 Day CHG~0.00%

Published-03 Oct, 2023 | 05:00

Updated-27 Feb, 2025 | 20:48

Improper Input Validation in HLOS

Memory Corruption in HLOS while registering for key provisioning notify.

Product-qam8255p_firmware snapdragon_8_gen_1_mobile_platform wsa8830 sa6150p_firmware sa8145p_firmware sxr2230p_firmware fsm10056 qca8337 qam8650p qfw7124 sg8275p_firmware qca6431_firmware qam8775p qru1052 snapdragon_865_5g_mobile_platform snapdragon_888_5g_mobile_platform qcn6224_firmware sc8280xp-bb_firmware sm7250-ac_firmware wsa8840 wcn3950_firmware snapdragon_888_5g_mobile_platform_firmware sa8150p_firmware qca6595au_firmware sa6155 wcd9370 ssg2115p qca6564 qca6426 sc8280xp-ab qdu1110 snapdragon_8_gen_2_mobile_platform sm8250-ab qamsrv1h wcd9385_firmware qam8295p wcn3950 fastconnect_6200 qamsrv1h_firmware sd_8_gen1_5g_firmware qsm8350_firmware qsm8350 qam8295p_firmware sa8155 sa9000p_firmware snapdragon_x55_5g_modem-rf_system qca6574au_firmware snapdragon_4_gen_2_mobile_platform qca6595au qca8081_firmware sa6155_firmware qfw7114 sm7250p_firmware wsa8845h_firmware qca6436_firmware qca6564au_firmware sa6155p_firmware snapdragon_x65_5g_modem-rf_system_firmware qcm8550_firmware qcs8155 wsa8840_firmware qca6698aq sa4155p_firmware sa8155_firmware qcs8550_firmware sm7250-ab_firmware sm8250-ac wcn3988_firmware qru1062_firmware sa6145p_firmware srv1h qca6421 sm7250-aa snapdragon_8\+_gen_1_mobile_platform fastconnect_6700_firmware sa8195p wcd9340 wsa8810_firmware qcn6224 fsm10056_firmware qca6436 snapdragon_ar2_gen_1_platform_firmware sa8255p_firmware sa6155p snapdragon_x75_5g_modem-rf_system qdu1000_firmware qca8081 wcd9395_firmware wsa8845h qca6698aq_firmware qcm4490 wcd9385 sxr2130_firmware qam8775p_firmware sa8255p qca6431 qca6696_firmware qca6797aq ar8035 qru1052_firmware sa8150p wcd9390 qcc710_firmware sm8250-ac_firmware wsa8830_firmware sd865_5g_firmware wcn3988 wsa8815_firmware wsa8835_firmware sa8195p_firmware snapdragon_865_5g_mobile_platform_firmware fastconnect_6800_firmware qca6564a sa8295p_firmware sa4150p snapdragon_8_gen_2_mobile_platform_firmware qca8337_firmware wcd9380_firmware ssg2125p sd865_5g fastconnect_6800 qca6595 qru1032 qca6564au qcm8550 sm8350-ac_firmware qdu1010_firmware qdx1011 qdu1000 wsa8835 qca6574 sxr1230p_firmware qdu1110_firmware sa8540p_firmware snapdragon_8\+_gen_2_mobile_platform_firmware sa4155p qcn6274 sd_8_gen1_5g wcd9380 fastconnect_6700 snapdragon_4_gen_2_mobile_platform_firmware ssg2125p_firmware qca6574a sxr2130 sxr1230p sg8275p qfw7114_firmware qru1062 wsa8845 sa8650p sa9000p qca6574_firmware sm7250-ab wcd9340_firmware wsa8815 sxr2230p qru1032_firmware snapdragon_xr2_5g_platform_firmware wsa8845_firmware qca6426_firmware qca6574a_firmware fastconnect_6200_firmware snapdragon_x55_5g_modem-rf_system_firmware sm8250-ab_firmware qca6391 sa8295p qca6421_firmware fastconnect_7800 sc8280xp-ab_firmware qcm4490_firmware qcn6274_firmware qcs4490_firmware snapdragon_xr2_5g_platform snapdragon_x65_5g_modem-rf_system sa8650p_firmware wsa8832_firmware fastconnect_6900 snapdragon_x75_5g_modem-rf_system_firmware fastconnect_6900_firmware srv1h_firmware qca6797aq_firmware qdu1010 qca6574au sa8155p_firmware qdx1011_firmware qca6564a_firmware fastconnect_7800_firmware snapdragon_8\+_gen_2_mobile_platform sm7250-aa_firmware wsa8810 wsa8832 qdx1010_firmware sa8540p sm7250-ac sm8550p snapdragon_8_gen_1_mobile_platform_firmware snapdragon_ar2_gen_1_platform sa6145p sm8350-ac qam8650p_firmware qca6564_firmware qcc710 qcs4490 qca6595_firmware sa8145p sc8280xp-bb qca6696 wcd9395 qca6391_firmware qcs8550 sa4150p_firmware wcd9370_firmware sm8550p_firmware qdx1010 sa6150p wcd9390_firmware sa8155p qdu1210 sm7250p snapdragon_8\+_gen_1_mobile_platform_firmware ssg2115p_firmware qcs8155_firmware qfw7124_firmware qam8255p qdu1210_firmware ar8035_firmware Snapdragon

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-787

Out-of-bounds Write

CVE-2021-30278

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.70%

7 Day CHG~0.00%

Published-03 Jan, 2022 | 07:25

Updated-03 Aug, 2024 | 22:24

Improper input validation in TrustZone memory transfer interface can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Product-fsm10055 qca9377_firmware mdm9150_firmware wcn3991_firmware sd678 qcn9070 sa6150p_firmware sa8145p_firmware qcs610 sm6250p_firmware wsa8830 qcs2290_firmware fsm10056 qca8337 sd7c_firmware csrb31024 csra6620 fsm10055_firmware qcn9072 qcs4290 wcn3950_firmware sa8150p_firmware sd765g_firmware qcs2290 qca6595au_firmware qca6390_firmware sa6155 ipq6000 sd690_5g sd730_firmware csra6620_firmware wcd9370 sd_675_firmware sd675_firmware csra6640_firmware qcn5152_firmware qca6564 qca6426 wcn3990_firmware qrb5165n_firmware qcn9000_firmware qca9984_firmware qca9377 sa415m sd_8cx_firmware wcd9385_firmware sdxr2_5g_firmware wcn3950 qcn6024_firmware sd720g sm6375_firmware sd662 sd460_firmware sa8155 qca6574au_firmware qcn5122_firmware sdx55_firmware qca6595au qca8081_firmware qcn6023_firmware sa6155_firmware sm7250p_firmware wcd9375_firmware wcn3999_firmware qca6436_firmware qrb5165n qca6564au_firmware sd778g sa6155p_firmware wcd9306 sm6225 wcn3999 sa515m_firmware qcs6490 qrb5165_firmware sdxr2_5g qcn5052 sa8155_firmware ipq6010 qca4004_firmware sd662_firmware sa415m_firmware qcs405 wcn3988_firmware qcn9074 sa6145p_firmware sm6250 sd778g_firmware wcd9306_firmware wcd9340 sa8195p sd765g sd765_firmware fsm10056_firmware qca6436 wcn6851 wcd9335 sa6155p qca8081 qcn6023 qca6174a_firmware qcs4290_firmware wcd9385 qca6696_firmware qcs6490_firmware sd750g sd870_firmware ar8035 csr8811 qca6390 sd_8cx sa8150p sd750g_firmware sm6250_firmware wcd9375 wcn3910_firmware qca4004 wsa8830_firmware sd660 sd865_5g_firmware qcm6490 sd888_5g_firmware wcn3988 sd660_firmware wcn6850_firmware wsa8835_firmware sa8195p_firmware qcn5121 qcx315 qcn5022_firmware qca6564a wcn6750_firmware qca8072 qcm2290_firmware sm6375 wcn3991 qca8337_firmware wcd9380_firmware wcn3990 qcn9000 sd_675 sd865_5g qca6564au sdx24 sdx55m_firmware wcn6856_firmware wsa8835 qca6574 qcx315_firmware sd665_firmware csr8811_firmware wcd9380 sd888_5g sd850 sm6250p qcs410 qca8075_firmware qca6574a sd690_5g_firmware ipq6005_firmware wcn6855_firmware qca6174a sm7325p sdx24_firmware qca8072_firmware wcd9335_firmware qcn5052_firmware wcn3980 wcn6750 ipq6018_firmware mdm9205 sa515m qca6574_firmware wcd9340_firmware sm7325p_firmware sd665 sd7c wcn3910 wcn6850 sd765 qca6426_firmware qca6574a_firmware qca9984 ipq6028 qcn5021 qcn5152 qcn9024 sd768g_firmware sd850_firmware wcn3980_firmware sd460 qca6391 sd730 sdx55m ipq6005 sd678_firmware ar8031_firmware csrb31024_firmware qcm4290 qcm6490_firmware qcn9070_firmware qrb5165 sd480_firmware wcn6851_firmware ipq6028_firmware sm6225_firmware qca6574au sa8155p_firmware qcn5122 qca6564a_firmware qcn9024_firmware qcm4290_firmware sd480 sd870 qcn5121_firmware wcn6855 qcs610_firmware mdm9150 wcn6856 qsm8250 ipq6018 qcn5022 sa6145p qca6564_firmware ipq6010_firmware ar8031 sd768g qcs405_firmware sa8145p qca6696 mdm9205_firmware qca6391_firmware wcd9370_firmware sa6150p sdx55 qca8075 qcn5021_firmware qcn9022_firmware csra6640 qcn6024 qcn9022 sa8155p sd675 qcn9072_firmware sm7250p ipq6000_firmware sd720g_firmware qcn9074_firmware qcs410_firmware ar8035_firmware qcm2290 qsm8250_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-20

Improper Input Validation

CVE-2018-3597

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 2.38%

7 Day CHG~0.00%

Published-06 Jul, 2018 | 17:00

Updated-16 Sep, 2024 | 18:48

In the ADSP RPC driver in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, an arbitrary kernel write can occur.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-20

Improper Input Validation

CVE-2023-21656

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 16.48%

7 Day CHG~0.00%

Published-06 Jun, 2023 | 07:39

Updated-02 Aug, 2024 | 09:44

Improper Input Validation in WLAN HOST

Memory corruption in WLAN HOST while receiving an WMI event from firmware.

CWE ID-CWE-20

Improper Input Validation

CVE-2019-14074

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 8.39%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-05 Aug, 2024 | 00:12

u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Product-mdm9150_firmware mdm9640_firmware qcs610 sdm450_firmware sdm632 qcs404_firmware mdm9650 mdm9645 apq8009_firmware msm8917 sdm670 qcs605_firmware apq8076 apq8076_firmware sda845_firmware sa415m bitra apq8098 qcn7605 mdm9206_firmware bitra_firmware msm8905_firmware sda660 sdx55_firmware qca8081_firmware sxr1130 msm8909w apq8053_firmware sda845 sa6155p_firmware sdm450 sdm636_firmware apq8098_firmware msm8998_firmware sdm630 mdm9607_firmware sm8250_firmware mdm9655_firmware sa415m_firmware qcs405 qm215 sc7180_firmware apq8017_firmware mdm9625_firmware sdm710_firmware sa6155p qca8081 msm8937 msm8905 sm8150_firmware msm8909 sxr2130_firmware mdm9655 rennell sc7180 mdm9625 msm8953_firmware saipan_firmware sm6150_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware sdm850 kamorta apq8017 msm8996 saipan mdm9640 kamorta_firmware mdm9635m_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdx24 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 sxr2130 sc8180x mdm9206 sdm670_firmware qcs404 sdx24_firmware ipq8074 sdm636 mdm9635m ipq6018_firmware mdm9205 qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware sxr1130_firmware apq8009 msm8909_firmware nicobar sdm850_firmware msm8920 msm8953 sdx20 qcm2150 msm8920_firmware sdm660 sc8180x_firmware ipq8074_firmware sdm710 mdm9607 mdm9645_firmware qcn7605_firmware qcs610_firmware mdm9150 mdm9207c_firmware msm8996_firmware ipq6018 mdm9207c apq8096au sdm439_firmware qcs405_firmware sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8940 apq8053 apq8096au_firmware sm8250 nicobar_firmware sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-190

Integer Overflow or Wraparound

CVE-2023-21631

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 22.94%

7 Day CHG~0.00%

Published-04 Jul, 2023 | 04:46

Updated-11 Aug, 2025 | 15:06

Improper Input Validation in Modem

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.

CWE ID-CWE-20

Improper Input Validation

CVE-2023-21657

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 16.59%

7 Day CHG~0.00%

Published-06 Jun, 2023 | 07:39

Updated-02 Aug, 2024 | 09:44

Improper Input Validation in Audio

Memoru corruption in Audio when ADSP sends input during record use case.

CWE ID-CWE-20

Improper Input Validation

CVE-2023-21671

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.3||CRITICAL

EPSS-0.06% / 19.34%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-11 Aug, 2025 | 15:06

Improper Input Validation in Core

Memory Corruption in Core during syscall for Sectools Fuse comparison feature.

Product-snapdragon_780g_5g_mobile_platform sm7315_firmware snapdragon_782g_mobile_platform wcd9380_firmware wcd9370 snapdragon_888\+_5g_mobile_platform_sm7315 snapdragon_778g\+_5g_mobile_platform wsa8830 snapdragon_780g_5g_mobile_platform_firmware snapdragon_888_5g_mobile_platform wcd9385 sd888 qsm8350 sd888_firmware snapdragon_7c\+_gen_3_compute_firmware wcn6740 wcn6740_firmware fastconnect_6700 snapdragon_778g\+_5g_mobile_platform_firmware qsm8350_firmware wcd9375_firmware fastconnect_6900 qca6391 wcd9370_firmware snapdragon_778g_5g_mobile_platform_firmware snapdragon_782g_mobile_platform_firmware wcd9385_firmware fastconnect_6900_firmware wcd9380 qcm6490_firmware sm7325p_firmware snapdragon_888_5g_mobile_platform_firmware wcd9375 sm7325p qcm6490 snapdragon_778g_5g_mobile_platform fastconnect_6700_firmware video_collaboration_vc3_platform_firmware snapdragon_888\+_5g_mobile_platform__firmware qcs6490_firmware wsa8835_firmware qcs6490 snapdragon_7c\+_gen_3_compute wsa8835 qca6391_firmware wsa8830_firmware video_collaboration_vc3_platform Snapdragon

CWE ID-CWE-20

Improper Input Validation

CVE-2018-21055

Matching Score-6

Assigner-MITRE Corporation

Matching Score-6

Assigner-MITRE Corporation

CVSS Score-9.8||CRITICAL

EPSS-0.19% / 41.58%

7 Day CHG~0.00%

Published-08 Apr, 2020 | 17:51

Updated-05 Aug, 2024 | 12:19

An issue was discovered on Samsung mobile devices with N(7.0) (Qualcomm models using MSM8996 chipsets) software. A device can be rooted with a custom image to execute arbitrary scripts in the INIT context. The Samsung ID is SVE-2018-11940 (September 2018).

Vendor-n/a Qualcomm Technologies, Inc.Google LLC

Product-android msm8996 n/a

CWE ID-CWE-20

Improper Input Validation

CVE-2023-21627

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.7||MEDIUM

EPSS-0.03% / 7.04%

7 Day CHG~0.00%

Published-08 Aug, 2023 | 09:14

Updated-02 Aug, 2024 | 09:44

Incorrect Type Conversion or Cast in Trusted Execution Environment

Memory corruption in Trusted Execution Environment while calling service API with invalid address.

Product-wsa8830 sda429w_firmware sa6150p_firmware wcd9380_firmware sa8145p_firmware sw5100p sd865_5g qcc5100 sdx55m_firmware wcn6856_firmware wsa8835 sd_8_gen1_5g wcd9380 sa8150p_firmware sd888_5g qca6420_firmware qca6595au_firmware qca6390_firmware wcn6855_firmware qca6426 qca6430_firmware wcn3980 wcn3998 wcd9385_firmware sdxr2_5g_firmware sd_8_gen1_5g_firmware wcn3660b sd855 wsa8815 wcn6850 qca6426_firmware wcn3660b_firmware wcn7850 qca6574au_firmware wcn3680b_firmware qca6595au wcn3998_firmware wcn3980_firmware qca6391 wcn3610_firmware qca6420 qca6436_firmware sdx55m qcc5100_firmware aqt1000_firmware sa6155p_firmware qcs8155 wcn7851 sdxr2_5g wcn6851_firmware wcn3988_firmware qca6430 qca6574au sa6145p_firmware sa8155p_firmware sa8195p wsa8810_firmware wcd9341_firmware sw5100 wsa8810 sd870 qca6436 wcn6851 wcn6855 sa6155p sw5100p_firmware wcn7851_firmware wcn6856 sa6145p wcn3680b wcd9385 wcd9341 qca6696_firmware sa8145p sd870_firmware qca6696 qca6391_firmware qca6390 aqt1000 sa8150p sa6150p sa8155p wsa8830_firmware sda429w sd855_firmware sd865_5g_firmware wcn3988 sd888_5g_firmware wcn6850_firmware wcn7850_firmware wsa8815_firmware wsa8835_firmware sa8195p_firmware qcs8155_firmware sw5100_firmware wcn3610 Snapdragon

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-704

Incorrect Type Conversion or Cast

CVE-2020-3676

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.13% / 33.14%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:44

Possible memory corruption in perfservice due to improper validation array length taken from user application. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, APQ8098, Kamorta, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CVE-2019-14123

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.12% / 32.26%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-05 Aug, 2024 | 00:12

Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3621

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.11% / 30.51%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Product-mdm9150_firmware kamorta_firmware qcm2150_firmware mdm9640_firmware qcs610 sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 qcs404_firmware mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8996au mdm9645 sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware qcs404 sdx24_firmware ipq8074 sdm636 sda845_firmware sa415m bitra apq8098 qcn7605 mdm9205 mdm9206_firmware qcs605 bitra_firmware msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware qca8081_firmware sxr1130 apq8009 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware sa6155p_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware mdm9655_firmware sdm660 sa415m_firmware qcs405 sc8180x_firmware ipq8074_firmware sdm710 qm215 sc7180_firmware mdm9607 mdm9645_firmware sdm710_firmware qcn7605_firmware sa6155p qca8081 qcs610_firmware msm8937 mdm9150 msm8996_firmware msm8905 sm8150_firmware msm8909 sxr2130_firmware mdm9655 apq8096au sdm439_firmware rennell sc7180 qcs405_firmware sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8953_firmware msm8940 saipan_firmware sm6150_firmware apq8053 msm8917_firmware apq8096au_firmware msm8998 sm8150 sdx20_firmware sdm850 sm8250 kamorta msm8996 saipan nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3698

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.30% / 52.45%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-04 Aug, 2024 | 07:44

Out of bound write while QoS DSCP mapping due to improper input validation for data received from association response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCM2150, QCN7605, QCS405, QCS605, QM215, SA6155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SDX55, SM8150, SM8250, SXR2130

Product-qca9377_firmware mdm9150_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 mdm9650 sdm429 msm8940_firmware msm8909w_firmware msm8996au sdm429w_firmware apq8009_firmware msm8917 sxr2130 qcs605_firmware sc8180x mdm9206 qca9379_firmware qca6174a sdm636 sda845_firmware qca9377 apq8098 qcn7605 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware qca6574au_firmware sdx55_firmware msm8909w apq8009 apq8053_firmware sda845 nicobar sa6155p_firmware msm8920 msm8953 sdm450 sdm636_firmware apq8098_firmware sdx20 qcm2150 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware sdm660 sc8180x_firmware qcs405 qca6574au qm215 mdm9607 apq8017_firmware qcn7605_firmware sa6155p mdm9150 msm8937 mdm9207c_firmware msm8905 mdm9207c qca6174a_firmware sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware sdm630_firmware qm215_firmware sdx55 msm8953_firmware msm8940 saipan_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 sm8150 sdx20_firmware apq8017 saipan nicobar_firmware qca9379 sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3623

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.69%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

kernel failure due to load failures while running v1 path directly via kernel in Snapdragon Mobile in SM8250, SXR2130

Product-sm8250 sxr2130 sm8250_firmware sxr2130_firmware Snapdragon Mobile

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3648

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 11.98%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Possible out of bound write in DSP driver code due to lack of check of data received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W

Product-msm8909w_firmware msm8909w Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CVE-2023-21647

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.27% / 49.74%

7 Day CHG+0.04%

Published-08 Aug, 2023 | 09:14

Updated-02 Aug, 2024 | 09:44

Improper Input Validation in Bluetooth HOST

Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.

Product-wsa8830 wcd9380_firmware sa6150p_firmware sa8145p_firmware qcs610 sw5100p sd865_5g qcc5100 sdx55m_firmware wcn6856_firmware wsa8835 wcn3950_firmware sd_8_gen1_5g wcd9380 sa8150p_firmware qca6595au_firmware qca6390_firmware qcs410 wcd9370 wcn6855_firmware qca6426 wcn3980 sdxr2_5g_firmware wcn3950 sd_8_gen1_5g_firmware wcn3660b wsa8815 wcn6850 qca6426_firmware wcn3660b_firmware wcn7850 qca6574au_firmware wcn3680b_firmware qca6595au wcn3980_firmware qca6391 sdx55m qca6436_firmware qcc5100_firmware sa6155p_firmware wcn7851 sdxr2_5g wcn6851_firmware wcn3988_firmware qca6574au qcn9074 sa6145p_firmware sa8155p_firmware sa8195p wsa8810_firmware wcd9341_firmware sw5100 wsa8810 sd870 qca6436 wcn6851 wcn6855 sa6155p sw5100p_firmware qcs610_firmware wcn7851_firmware wcn6856 sa6145p wcn3680b wcd9341 qca6696_firmware sa8145p sd870_firmware qca6696 qca6391_firmware qca6390 wcd9370_firmware sa8150p sa6150p sa8155p wsa8830_firmware sd865_5g_firmware wcn3988 wcn6850_firmware wsa8815_firmware wcn7850_firmware wsa8835_firmware sa8195p_firmware sw5100_firmware qcn9074_firmware qcs410_firmware Snapdragon

CWE ID-CWE-20

Improper Input Validation

CVE-2016-5872

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.15% / 36.52%

7 Day CHG~0.00%

Published-18 Aug, 2017 | 18:00

Updated-20 Apr, 2025 | 01:37

In all Qualcomm products with Android releases from CAF using the Linux kernel, arguments to several QTEE syscalls are not properly validated.

Product-android All Qualcomm products

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3703

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.29% / 52.31%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130

Product-qca9377_firmware kamorta_firmware qcm2150_firmware qcs610 sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 qcs404_firmware sdm429 msm8940_firmware sm7150_firmware sm6150 ar9344 sm7150 msm8917 sdm670 qcs605_firmware apq8076 sc8180x mdm9206 qca6174a sdm670_firmware qcs404 sdx24_firmware apq8076_firmware sdm636 qca9377 bitra mdm9206_firmware qcs605 bitra_firmware msm8937_firmware sdm429_firmware msm8905_firmware sxr1130_firmware sxr1130 apq8053_firmware nicobar msm8953 sdm450 sdm636_firmware sdx20 qcm2150 sdm660 sdm630 mdm9607_firmware sc8180x_firmware qcs405 sdm710 qm215 mdm9607 sdm710_firmware qcm6125 qcs610_firmware msm8937 mdm9207c_firmware msm8905 mdm9207c qca6174a_firmware sm8150_firmware sdm439_firmware qcs405_firmware rennell sdm630_firmware rennell_firmware qm215_firmware msm8953_firmware msm8940 sm6150_firmware apq8053 msm8917_firmware sm8150 ar9344_firmware sdx20_firmware kamorta nicobar_firmware sdm660_firmware qcm6125_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3652

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.1||CRITICAL

EPSS-0.24% / 46.83%

7 Day CHG~0.00%

Published-16 Apr, 2020 | 10:46

Updated-04 Aug, 2024 | 07:37

Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850

Product-sdm850_firmware sc7180_firmware msm8998 sdm850 sc7180 qca6390_firmware msm8998_firmware qca6390 sc8180x sc8180x_firmware Snapdragon Compute, Snapdragon Connectivity

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2024-23362

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.70%

7 Day CHG~0.00%

Published-02 Sep, 2024 | 10:22

Updated-05 Sep, 2024 | 03:56

Improper Input Validation in Trusted Execution Environment

Cryptographic issue while parsing RSA keys in COBR format.

CWE ID-CWE-20

Improper Input Validation

CVE-2018-13906

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.1||CRITICAL

EPSS-0.23% / 45.98%

7 Day CHG~0.00%

Published-14 Jun, 2019 | 17:02

Updated-05 Aug, 2024 | 09:14

The HMAC authenticating the message from QSEE is vulnerable to timing side channel analysis leading to potentially forged application message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA8081, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

Product-sd_850 mdm9150_firmware sd_632 mdm9635m_firmware mdm9640_firmware sd_820a msm8996au_firmware sd_439 sd_670_firmware sd_429 sdm439 mdm9650 sd_636 sd_615_firmware snapdragon_high_med_2016_firmware msm8909w_firmware msm8996au sd_820 sd_650 sd_450_firmware sd_845_firmware sd_410 sd_820a_firmware qcs605_firmware ipq4019_firmware mdm9206 sd_652 sd_425_firmware sd_625_firmware ipq8074 sd_450 mdm9635m sd_8cx_firmware sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sxr1130_firmware sd_210_firmware sd_415_firmware sd_652_firmware qca8081_firmware sxr1130 msm8909w sd_616_firmware sd_205_firmware sd_415 sd_212 sd_650_firmware sd_427_firmware sd_712 sd_855 sd_412 qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 mdm9655_firmware sd_615 sd_710_firmware qcs405 sdm630 sd_625 ipq8074_firmware sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qca8081 qualcomm_215_firmware mdm9150 sd_429_firmware snapdragon_high_med_2016 sd_212_firmware sd_850_firmware mdm9655 sdm439_firmware qcs405_firmware sd_712_firmware sd_412_firmware sd_855_firmware sdm630_firmware sda660_firmware sd_8cx sd_430 ipq4019 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_410_firmware sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-417

Not Available

CWE ID-CWE-20

Improper Input Validation

CVE-2018-13904

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.39% / 59.31%

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 09:14

Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130.

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21453

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.12% / 32.37%

7 Day CHG~0.00%

Published-01 Apr, 2024 | 15:06

Updated-11 Aug, 2025 | 15:06

Improper Input Validation in Automotive Telematics

Transient DOS while decoding message of size that exceeds the available system memory.

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21452

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.3||HIGH

EPSS-0.07% / 22.50%

7 Day CHG~0.00%

Published-01 Apr, 2024 | 15:06

Updated-13 Jan, 2025 | 21:53

Improper Input Validation in Automotive Telematics

Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown extensions.

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21473

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.19% / 40.89%

7 Day CHG+0.05%

Published-01 Apr, 2024 | 15:06

Updated-13 Jan, 2025 | 21:54

Improper Input Validation in WIN SON

Memory corruption while redirecting log file to any file location with any file name.

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-787

Out-of-bounds Write

CVE-2024-53022

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.44%

7 Day CHG~0.00%

Published-03 Mar, 2025 | 10:07

Updated-06 Mar, 2025 | 17:52

Improper Input Validation in Automotive OS Platform

Memory corruption may occur during communication between primary and guest VM.

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-787

Out-of-bounds Write

CVE-2022-34146

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 36.67%

7 Day CHG~0.00%

Published-09 Feb, 2023 | 06:58

Updated-03 Aug, 2024 | 08:16

Improper input validation in WLAN Host

Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.

Product-qcn5024_firmware wsa8830 qcn9070 sxr2230p_firmware qcs610 ipq8173_firmware qcn5124 qca4024_firmware qcn9072 wcn3950_firmware ipq8078a ipq5028_firmware qca6595au_firmware ipq6000 wcd9370 ssg2115p qcn5152_firmware qca6584au_firmware qcn9000_firmware ipq5018 qca6554a_firmware wcd9385_firmware qam8295p wcn3950 ipq8076a qcn6024_firmware sd_8_gen1_5g_firmware ipq8074a qcn5124_firmware qam8295p_firmware qcn6100_firmware qcn6102_firmware wcn7850 qca6574au_firmware qcn5122_firmware qcn5164_firmware qca6595au qca8081_firmware qcn6023_firmware wcd9375_firmware qcn9002 ipq5010 qca6564au_firmware qca6584au sa6155p_firmware sd680_firmware ipq8078a_firmware qcn9274 ipq8174 qcn9001 wcn7851 ipq5028 qca6698aq qcn5052 ipq6010 qcn6112_firmware wcn3988_firmware qcn9074 sa8195p qcn6132 wsa8810_firmware sd680 sa6155p sg4150p qca8081 wcn7851_firmware qca6698aq_firmware ipq8071a qcn6023 ipq8071a_firmware wcd9385 qca9888_firmware qcn6122 wcd9341 qca6696_firmware ipq9008_firmware qcn5154_firmware csr8811 wcd9375 qcn9100_firmware wsa8830_firmware ipq5010_firmware ipq8074a_firmware wcn3988 wsa8815_firmware wcn7850_firmware wsa8835_firmware sa8195p_firmware sm8475 qcn5022_firmware sa8295p_firmware sa4150p sg4150p_firmware qcm4325 qca8072 ipq5018_firmware wcd9380_firmware ssg2125p qcn9000 ipq8072a qca6554a ipq8076a_firmware qca6595 ipq8078 qca6564au qcn9001_firmware ipq8173 wcn6856_firmware ipq9008 qcn5164 qcn6122_firmware qca6574 sxr1230p_firmware wsa8835 csr8811_firmware wcd9380 qcn5054_firmware qcs410 qcn5154 qca8075_firmware ssg2125p_firmware qca6574a qcn5024 wcn6855_firmware qca9889 qcn6132_firmware qcn9003_firmware sxr1230p qca9888 qca8072_firmware wcn3980 qcn5052_firmware qcn9274_firmware qcn9003 ipq8070a_firmware ipq6018_firmware ipq8076_firmware qcm4325_firmware qca6574_firmware wsa8815 qcn6112 sxr2230p ipq8076 qca6574a_firmware qcn5152 ipq6028 qcn9024 ipq9574_firmware wcn3980_firmware sa8295p wcn6740_firmware qcn6102 qcn9100 ipq8078_firmware wsa8832_firmware qcn5054 qcn9070_firmware ipq6028_firmware ipq8072a_firmware qca6574au qca9889_firmware sa8155p_firmware ipq9574 qcn5122 qcn9024_firmware ipq8174_firmware wcd9341_firmware wsa8810 wsa8832 wcn6855 qcs610_firmware wcn6856 ipq6018 qcn5022 ipq6010_firmware qca6595_firmware wcn6740 qca6696 sa4150p_firmware qca4024 wcd9370_firmware qca8075 qcn9022_firmware sa8155p qcn6024 qcn9022 ipq8070a qcn9002_firmware qcn6100 qcn9072_firmware ipq6000_firmware ssg2115p_firmware qcn9074_firmware qcs410_firmware Snapdragon qcn5024_firmware ipq5018_firmware wcd9380_firmware sxr2230p_firmware ipq8076a_firmware ipq8173_firmware qcn9001_firmware wcn6856_firmware qca4024_firmware qcn6122_firmware sxr1230p_firmware wcn3950_firmware csr8811_firmware ipq5028_firmware qca6595au_firmware qcn5054_firmware qca8075_firmware ssg2125p_firmware wcn6855_firmware qcn5152_firmware qcn6132_firmware qcn9003_firmware qca6584au_firmware qca8072_firmware qcn9000_firmware qcn5052_firmware qcn9274_firmware ipq8070a_firmware qca6554a_firmware wcd9385_firmware qcn6024_firmware ipq8076_firmware ipq6018_firmware qcm4325_firmware qca6574_firmware sd_8_gen1_5g_firmware qcn5124_firmware qam8295p_firmware qcn6100_firmware qcn6102_firmware qca6574a_firmware qca6574au_firmware qcn5122_firmware qcn5164_firmware wcd9375_firmware qca8081_firmware qcn6023_firmware ipq9574_firmware wcn3980_firmware wcn6740_firmware qca6564au_firmware sd680_firmware sa6155p_firmware ipq8078a_firmware ipq8078_firmware wsa8832_firmware qcn9070_firmware ipq6028_firmware ipq8072a_firmware qcn6112_firmware wcn3988_firmware qca9889_firmware sa8155p_firmware qcn9024_firmware ipq8174_firmware wsa8810_firmware wcd9341_firmware qcs610_firmware wcn7851_firmware qca6698aq_firmware ipq8071a_firmware qca9888_firmware ipq6010_firmware qca6696_firmware qca6595_firmware ipq9008_firmware qcn5154_firmware sa4150p_firmware wcd9370_firmware qcn9100_firmware qcn9022_firmware wsa8830_firmware qcn9002_firmware ipq5010_firmware ipq8074a_firmware wsa8815_firmware wsa8835_firmware wcn7850_firmware qcn9072_firmware ipq6000_firmware sa8195p_firmware ssg2115p_firmware qcn9074_firmware qcs410_firmware qcn5022_firmware sa8295p_firmware sg4150p_firmware

CWE ID-CWE-20

Improper Input Validation

CVE-2022-33211

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.12% / 31.99%

7 Day CHG~0.00%

Published-04 Apr, 2023 | 04:46

Updated-03 Aug, 2024 | 08:01

Improper Input Validation in MODEM

memory corruption in modem due to improper check while calculating size of serialized CoAP message

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-131

Incorrect Calculation of Buffer Size

CVE-2022-33300

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.04% / 12.64%

7 Day CHG~0.00%

Published-06 Jan, 2023 | 05:02

Updated-09 Apr, 2025 | 14:53

Improper input validation in Automotive Android OS

Memory corruption in Automotive Android OS due to improper input validation.

Product-qca9377_firmware wsa8830 wcd9380_firmware sa6150p_firmware wcn3990 sa8145p_firmware sw5100p sd865_5g qcc5100 sdx55m_firmware wcn6856_firmware qcn9012 wsa8835 wcd9380 sa8150p_firmware sd888_5g qca6595au_firmware qca6390_firmware wcn6855_firmware qca6174a qca6426 wcn3990_firmware qrb5165n_firmware qcn9012_firmware qca9377 wcd9335_firmware wcn3980 wcd9385_firmware qam8295p sdxr2_5g_firmware sd_8_gen1_5g_firmware wsa8815 wcn6850 qam8295p_firmware qcn9011_firmware qca6426_firmware wcn7850 qca6574au_firmware qca6595au sdx12_firmware qrb5165m wcn3980_firmware qca6391 sdx55m qca6436_firmware qrb5165n sa8295p qcc5100_firmware sa6155p_firmware wcn7851 qrb5165_firmware qrb5165m_firmware sdxr2_5g qrb5165 wcn6851_firmware qcn9011 wcn3988_firmware qca6574au sa6145p_firmware sa8155p_firmware sa8195p wsa8810_firmware wcd9341_firmware sw5100 wsa8810 sd870 qca6436 wcn6851 wcd9335 sa6155p wcn6855 sw5100p_firmware wcn7851_firmware wcn6856 sa6145p qca6174a_firmware wcd9385 wcd9341 qca6696_firmware sa8145p sd870_firmware qca6696 qca6391_firmware qca6390 sa8150p sa6150p sa8155p wsa8830_firmware sd660 sd865_5g_firmware wcn3988 sd888_5g_firmware wcn6850_firmware sd660_firmware wcn7850_firmware wsa8815_firmware sa8195p_firmware wsa8835_firmware sdx12 sw5100_firmware sm8475 sa8295p_firmware Snapdragon

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-787

Out-of-bounds Write

CVE-2018-11932

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.1||CRITICAL

EPSS-0.22% / 44.66%

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 08:24

Improper input validation can lead RW access to secure subsystem from HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9650, MDM9655, MSM8996AU, QCS605, SD 410/12, SD 615/16/SD 415, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SXR1130.

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11864

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.05% / 15.45%

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 08:24

Bytes can be written to fuses from Secure region which can be read later by HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCA8081, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

Product-sd_850 mdm9150_firmware sd_632 sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdm439 mdm9650 sd_636 snapdragon_high_med_2016_firmware msm8996au sd_820 sd_650 sd_450_firmware sd_845_firmware sd_410 sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_652 sd_425_firmware sd_625_firmware ipq8074 sd_450 sd_8cx_firmware sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sxr1130_firmware sd_210_firmware sd_652_firmware qca8081_firmware sxr1130 sd_205_firmware sd_212 sd_650_firmware sd_427_firmware sd_712 sd_412 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 mdm9655_firmware sd_710_firmware sdm630 sd_625 ipq8074_firmware sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qca8081 mdm9150 sd_429_firmware snapdragon_high_med_2016 sd_212_firmware sd_850_firmware mdm9655 sdm439_firmware sd_412_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_8cx sd_430 sd_427 sd_670 sd_435_firmware sd_710 sd_410_firmware sd_205 sdm660_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11935

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.3||MEDIUM

EPSS-0.18% / 40.15%

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 08:24

Improper input validation might result in incorrect app id returned to the caller Instead of returning failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9607, MDM9650, MDM9655, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 615/16/SD 415, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM630, SDM660, SXR1130.

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11999

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.05% / 13.26%

7 Day CHG~0.00%

Published-18 Jan, 2019 | 22:00

Updated-05 Aug, 2024 | 08:24

Improper input validation in trustzone can lead to denial of service in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDM630, SDM660, SDX24

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11931

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 10.01%

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 08:24

Improper access to HLOS is possible while transferring memory to CPZ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in versions MDM9150, MDM9206, MDM9607, MDM9650, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.

Product-mdm9150_firmware sd_632 sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdm439 mdm9650 sd_636 sd_615_firmware snapdragon_high_med_2016_firmware msm8996au sd_820 sd_650 sd_450_firmware sd_410 sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_652 sd_425_firmware sd_625_firmware sd_450 sd_8cx_firmware mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sxr1130_firmware sd_210_firmware sd_415_firmware sd_652_firmware sxr1130 sd_616_firmware sd_205_firmware sd_415 sd_212 sd_650_firmware sd_427_firmware sd_712 sd_412 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_615 sd_710_firmware sdm630 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware mdm9150 sd_429_firmware snapdragon_high_med_2016 sd_212_firmware sdm439_firmware sd_412_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_8cx sd_430 sd_427 sd_670 sd_435_firmware sd_710 sd_410_firmware sd_205 sdm660_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11950

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.69%

7 Day CHG~0.00%

Published-26 Oct, 2018 | 13:00

Updated-05 Aug, 2024 | 08:24

Unapproved TrustZone applications can be loaded and executed in Snapdragon Mobile in version SD 845, SD 850

Product-sd_850_firmware sd_845 sd_850 sd_845_firmware Snapdragon Mobile

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11873

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.69%

7 Day CHG~0.00%

Published-29 Oct, 2018 | 18:00

Updated-05 Aug, 2024 | 08:24

Improper input validation leads to buffer overwrite in the WLAN function that handles WLAN roam buffer in Snapdragon Mobile in version SD 845.

Product-sd845_firmware sd845 Snapdragon Mobile

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11287

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.29% / 51.78%

7 Day CHG~0.00%

Published-20 Sep, 2018 | 13:00

Updated-05 Aug, 2024 | 08:01

In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016, incorrect control flow implementation in Video while checking buffer sufficiency.

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11280

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.03% / 8.49%

7 Day CHG~0.00%

Published-18 Sep, 2018 | 18:00

Updated-05 Aug, 2024 | 08:01

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing user-space there is no size validation of the NAT entry input. If the user input size of the NAT entry is greater than the max allowed size, memory exhaustion will occur.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-20

Improper Input Validation

CVE-2018-11302

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 3.03%

7 Day CHG~0.00%

Published-18 Sep, 2018 | 18:00

Updated-05 Aug, 2024 | 08:01

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from userspace before copying into buffer can lead to potential array overflow in WLAN.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10431

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.22% / 44.33%

7 Day CHG~0.00%

Published-18 Apr, 2018 | 14:00

Updated-16 Sep, 2024 | 20:11

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, and SD 850, TZ applications are not properly validated.

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10501

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.26% / 49.19%

7 Day CHG~0.00%

Published-18 Apr, 2018 | 14:00

Updated-17 Sep, 2024 | 02:48

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile, Snapdragon Wear, and Small Cell SoC FSM9055, MDM9206, MDM9607, MDM9635M, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, and SD 835, improper input validation can occur while parsing an image.

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10337

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.08% / 25.52%

7 Day CHG~0.00%

Published-13 Jun, 2017 | 20:00

Updated-20 Apr, 2025 | 01:37

In all Android releases from CAF using the Linux kernel, some validation of secure applications was not being performed.

Product-android All Qualcomm products

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10469

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.23% / 45.47%

7 Day CHG~0.00%

Published-18 Apr, 2018 | 14:00

Updated-16 Sep, 2024 | 17:47

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, and SD 850, incorrect implementation of RSA padding functions in CORE.

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10464

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.24% / 46.41%

7 Day CHG~0.00%

Published-18 Apr, 2018 | 14:00

Updated-16 Sep, 2024 | 19:56

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9640, MDM9650, QCA6174A, QCA6574AU, QCA9377, SD 210/SD 212/SD 205, SD 425, SD 600, SD 650/52, SD 808, SD 810, SD 820, and SDX20, lack of input validation for HCI H4 UART packet ID cause system denial of service.

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10384

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.25% / 48.33%

7 Day CHG~0.00%

Published-18 Aug, 2017 | 18:00

Updated-20 Apr, 2025 | 01:37

In all Qualcomm products with Android releases from CAF using the Linux kernel, an assertion was potentially reachable in a WLAN driver ioctl.

Product-android Snapdragon Mobile, Snapdragon Wear

CWE ID-CWE-20

Improper Input Validation

CVE-2016-10387

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.25% / 48.33%

7 Day CHG~0.00%

Published-18 Aug, 2017 | 18:00

Updated-20 Apr, 2025 | 01:37

In all Qualcomm products with Android releases from CAF using the Linux kernel, an assertion was potentially reachable in a handover scenario.