cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-25682,https://securityvulnerability.io/vulnerability/CVE-2022-25682,Memory Corruption in Qualcomm Snapdragon Products,"A memory corruption vulnerability exists in the Qualcomm Snapdragon family of products, caused by the improper handling of out of range pointer offsets during command decoding from the UIM card. This issue affects numerous device categories, including automotive, computing, connectivity, IoT for consumers and industries, mobile devices, and wearables. Successful exploitation could potentially allow an attacker to execute arbitrary code or cause unexpected behavior in affected devices, raising significant security concerns.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-33268,https://securityvulnerability.io/vulnerability/CVE-2022-33268,Buffer Over-Read Vulnerability in Qualcomm Snapdragon Products,"A vulnerability exists in Qualcomm's Snapdragon product line that allows for information disclosure via a buffer over-read during the Bluetooth pairing and connection process with A2DP. This issue affects multiple Snapdragon variants, including Auto, Compute, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wearables, potentially exposing sensitive data during Bluetooth interactions.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.2,HIGH,0.0006099999882280827,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25695,https://securityvulnerability.io/vulnerability/CVE-2022-25695,Memory Corruption in Snapdragon Products by Qualcomm,"This vulnerability involves a memory corruption issue within Qualcomm's Snapdragon platforms due to improper validation of array indices during the processing of GSTK Proactive commands. It affects a wide range of Snapdragon products, potentially exposing them to various security risks. Users and developers are advised to review affected product documentation and implement recommended security measures.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-33238,https://securityvulnerability.io/vulnerability/CVE-2022-33238,Denial of Service Vulnerability in Snapdragon Products by Qualcomm,"A transient denial of service vulnerability is present in Qualcomm's Snapdragon products due to a loop with an unreachable exit condition when processing incoming FTM frames. This issue can lead to significant disruptions, impacting device functionality across various Snapdragon platforms including automotive, consumer electronics, and IoT applications.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-33235,https://securityvulnerability.io/vulnerability/CVE-2022-33235,Buffer Over-Read Vulnerability in Qualcomm Snapdragon Products,"A vulnerability has been identified in various Qualcomm Snapdragon products, stemming from a buffer over-read issue within the WLAN firmware. This flaw arises while parsing security context information attributes, potentially allowing unauthorized parties access to sensitive information. The affected Snapdragon series includes a wide array of applications, from consumer electronics to connectivity solutions, posing significant risks across multiple devices and environments.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",8.2,HIGH,0.0012700000079348683,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25742,https://securityvulnerability.io/vulnerability/CVE-2022-25742,Denial of Service Vulnerability in Snapdragon Consumer IoT and Industrial IoT Products,"A Denial of Service vulnerability exists in Qualcomm's Snapdragon products, where an infinite loop can occur when parsing IGMPv2 packets from a server. This issue impacts Snapdragon Consumer IoT, Snapdragon Industrial IoT, and Snapdragon Voice & Music, potentially disrupting services and affecting system stability. Users are encouraged to update affected devices to mitigate this risk.",Qualcomm,"Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Voice & Music",7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25727,https://securityvulnerability.io/vulnerability/CVE-2022-25727,Memory Corruption in Snapdragon IoT and Audio Products by Qualcomm,"This vulnerability involves memory corruption in Qualcomm's Snapdragon platform due to an improper length check while copying data into memory. This issue affects various products in the Snapdragon Consumer IoT, Industrial IoT, and Voice & Music categories. When exploited, it could lead to unexpected behavior, potentially exposing systems to further risks.",Qualcomm,"Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Voice & Music",9.8,CRITICAL,0.0017099999822676182,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-33237,https://securityvulnerability.io/vulnerability/CVE-2022-33237,Buffer Over-read Vulnerability in Qualcomm Snapdragon Products,"This vulnerability arises from a buffer over-read in the WLAN firmware while processing the PPE threshold, impacting various Qualcomm Snapdragon products including automotive and mobile solutions. Attackers exploiting this weakness could potentially cause transient denial-of-service situations, disrupting the normal operation of affected devices.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-33239,https://securityvulnerability.io/vulnerability/CVE-2022-33239,Transient Denial of Service Vulnerability in Snapdragon Firmware,"A vulnerable condition exists within the WLAN firmware of Snapdragon products, where a loop with an unreachable exit condition occurs during the parsing of the IPv6 extension header. This vulnerability can lead to a transient denial of service, potentially impacting device functionality and network connectivity across various Snapdragon platforms.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25743,https://securityvulnerability.io/vulnerability/CVE-2022-25743,Memory Corruption in Graphics of Qualcomm Snapdragon Products,"A vulnerability exists in the Qualcomm Snapdragon product line where improper memory management during the import of graphics buffers can lead to memory corruption. This occurs due to a use-after-free condition, which may allow an attacker to execute arbitrary code or cause denial of service by manipulating how memory is allocated and used. Devices utilizing Snapdragon technology for various applications are at risk, necessitating immediate attention to implement available patches and updates.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25710,https://securityvulnerability.io/vulnerability/CVE-2022-25710,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"This vulnerability affects multiple Qualcomm Snapdragon products, causing a denial of service condition due to a null pointer dereference when the GATT (Generic Attribute Profile) connection is disconnected. This issue has implications for device stability and user experience, particularly in environments reliant on consistent connectivity like automotive and IoT applications.",Qualcomm,"Snapdragon Auto, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music",7.5,HIGH,0.0008800000068731606,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25674,https://securityvulnerability.io/vulnerability/CVE-2022-25674,Cryptographic Issues in WPA/WPA2 Protocol Affecting Snapdragon Devices,"This vulnerability involves cryptographic weaknesses in the WLAN group key handshake process of the WPA/WPA2 protocol, impacting Qualcomm's Snapdragon products. Exploiting this flaw may allow unauthorized access to sensitive information and breaches in secure wireless communications.",Qualcomm,"Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Voice & Music",6.5,MEDIUM,0.0017099999822676182,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25724,https://securityvulnerability.io/vulnerability/CVE-2022-25724,Buffer Overflow Vulnerability in Qualcomm Snapdragon Products,"This vulnerability pertains to a memory corruption issue caused by a buffer overflow during the validation of user addresses in various Qualcomm Snapdragon products. The flaw spans multiple product categories, including automotive, computing, connectivity, consumer IoT, industrial IoT, mobile, audio, and wearable devices. Exploiting this vulnerability could potentially allow an attacker to execute arbitrary code, compromising the integrity and security of the affected systems. It's imperative for users and administrators to be vigilant and apply any available patches or updates to mitigate risks associated with this vulnerability.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25687,https://securityvulnerability.io/vulnerability/CVE-2022-25687,Buffer Overflow Vulnerability in Snapdragon Products by Qualcomm,"A vulnerability has been identified in Qualcomm's Snapdragon products, where a buffer overflow error during the parsing of ASF clips can lead to memory corruption. This issue affects a wide range of Snapdragon platforms, potentially exposing devices to unexpected behavior or crashes. Users and administrators are encouraged to apply patches and stay updated to mitigate any potential risks associated with this vulnerability.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",7.3,HIGH,0.0018899999558925629,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-25719,https://securityvulnerability.io/vulnerability/CVE-2022-25719,Information Disclosure in Snapdragon Products by Qualcomm,"This vulnerability allows unauthorized parties to gain access to sensitive information over WLAN connections due to improper length checks during the authentication handshake in various Snapdragon products. Affected devices span multiple applications, including automotive, consumer electronics, IoT, and mobile communication, highlighting the broad implications for safety and privacy. Users and manufacturers are advised to implement patches provided by Qualcomm to mitigate potential risks associated with this flaw.",Qualcomm,"Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",8.2,HIGH,0.0015800000401213765,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-25748,https://securityvulnerability.io/vulnerability/CVE-2022-25748,Memory Corruption Vulnerability in Snapdragon Products by Qualcomm,"A vulnerability exists in Qualcomm's Snapdragon product line, stemming from memory corruption triggered by an integer overflow during the processing of GTK frames. This flaw affects a wide range of Snapdragon variants, including those utilized in automotive, connectivity, consumer electronics, IoT, and mobile applications. Exploiting this vulnerability may enable attackers to execute malicious code or disrupt system operations, underscoring the importance of timely updates and security measures.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",9.8,CRITICAL,0.0018899999558925629,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-25749,https://securityvulnerability.io/vulnerability/CVE-2022-25749,Buffer Over-Read Vulnerability in Qualcomm Snapdragon Products,"A transient denial-of-service vulnerability occurs in the Qualcomm Snapdragon product line due to a buffer over-read when processing MDNS frames. This flaw can potentially disrupt service, affecting multiple Snapdragon applications across various sectors, including automotive, mobile, and IoT devices. Proper patches and system updates are crucial for mitigating this risk.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-25718,https://securityvulnerability.io/vulnerability/CVE-2022-25718,Cryptographic Flaw in Qualcomm Snapdragon Products,"This vulnerability in Qualcomm's Snapdragon family of products stems from an improper validation of return values during the authentication handshake process within WLAN. As a result, potential exploitation could lead to various security concerns affecting the integrity and confidentiality of data transmitted over wireless networks. It is crucial for users and administrators of the affected Snapdragon devices to apply the recommended patches and updates to mitigate any risks associated with this vulnerability.",Qualcomm,"Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",9.1,CRITICAL,0.0017099999822676182,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-25720,https://securityvulnerability.io/vulnerability/CVE-2022-25720,WLAN Memory Corruption in Qualcomm Snapdragon Products,"A memory corruption vulnerability exists in WLAN implementation within various Qualcomm Snapdragon products, triggered by out of bound array access during connection and roaming processes. This flaw potentially allows an attacker to exploit the vulnerability, leading to unexpected behavior or impacts on device performance.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",9.8,CRITICAL,0.0022299999836832285,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-25736,https://securityvulnerability.io/vulnerability/CVE-2022-25736,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"A denial of service vulnerability exists in Qualcomm Snapdragon products due to an out-of-bound read that occurs while processing VHT action frames. This vulnerability affects numerous Snapdragon platforms, potentially allowing unauthorized users to disrupt the service of connected devices. Readers are advised to review the specific product bulletins and update their systems promptly to mitigate associated risks.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-10-19T00:00:00.000Z,0
CVE-2022-22058,https://securityvulnerability.io/vulnerability/CVE-2022-22058,Memory Corruption Vulnerability in Snapdragon Products by Qualcomm,"A memory corruption vulnerability exists in Qualcomm's Snapdragon product line, stemming from a use-after-free issue encountered while handling ION handles. This flaw can potentially enable malicious actors to exploit the affected systems, leading to unauthorized access and instability. Users of the Snapdragon Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wearables need to stay informed and apply necessary updates to safeguard their devices.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-09-26T16:35:09.000Z,0
CVE-2022-25690,https://securityvulnerability.io/vulnerability/CVE-2022-25690,Information Disclosure in Qualcomm Snapdragon Products,"A vulnerability exists in Qualcomm's Snapdragon product line due to improper validation of array indices while parsing crafted ANQP action frames. This flaw may lead to unauthorized information disclosure through a WLAN interface, affecting various Snapdragon environments including automotive and consumer devices. Proper validation measures must be reinforced to mitigate potential exploitation risks and secure user data.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music",7.5,HIGH,0.0012700000079348683,false,,false,false,false,,,false,false,,2022-09-16T05:25:57.000Z,0
CVE-2022-25688,https://securityvulnerability.io/vulnerability/CVE-2022-25688,Buffer Overflow Vulnerability in Qualcomm Snapdragon Products,"A vulnerability exists due to memory corruption caused by a buffer overflow when parsing PS video clips across various Qualcomm Snapdragon platforms. This issue could potentially allow for unauthorized access or exploitation, affecting numerous products in the Snapdragon family and posing risks to video playback integrity.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",7.3,HIGH,0.0018899999558925629,false,,false,false,false,,,false,false,,2022-09-16T05:25:56.000Z,0
CVE-2022-25670,https://securityvulnerability.io/vulnerability/CVE-2022-25670,Denial of Service Vulnerability in Snapdragon Products by Qualcomm,"A vulnerability has been identified in Qualcomm Snapdragon products, where a buffer over-read can occur during the unpacking of frames in the WLAN HOST module. This issue may lead to a denial of service, impacting device functionality. Users of devices powered by Snapdragon technology should be aware of this vulnerability and consider applying available updates and mitigation strategies to safeguard their systems.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-16T05:25:55.000Z,0
CVE-2022-25669,https://securityvulnerability.io/vulnerability/CVE-2022-25669,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"This vulnerability impacts various Qualcomm Snapdragon products, allowing an attacker to exploit a buffer over-read condition during the parsing of MP4 clips. This flaw can lead to a denial of service, potentially disrupting essential services in affected systems. Users and administrators are advised to apply necessary patches and updates promptly to mitigate the risks associated with this vulnerability.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2022-09-16T05:25:54.000Z,0