cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-23369,https://securityvulnerability.io/vulnerability/CVE-2024-23369,Memory Corruption Vulnerability in Qualcomm's FRS/UDS Protocols,"A significant vulnerability exists within Qualcomm's FRS/UDS protocols, which arises when an invalid length is supplied from HLOS (High-Level Operating System) during request or response buffers. This memory corruption may impact the integrity and functionality of affected products, allowing unauthorized access or manipulation of data. It is imperative for users and administrators to assess the risk associated with this vulnerability and apply necessary mitigations as detailed in the security bulletin provided by Qualcomm.",Qualcomm,Snapdragon 888\+ 5g Mobile Platform \(sm8350-ac\) Firmware,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-10-07T13:15:00.000Z,0
CVE-2024-38397,https://securityvulnerability.io/vulnerability/CVE-2024-38397,Transient Denial of Service in Qualcomm Wi-Fi Products,"A transient denial of service vulnerability has been identified in Qualcomm Wi-Fi products that occurs during the parsing of probe response and association response frames. This vulnerability could lead to service interruptions, potentially affecting network availability and user experience. Immediate action is required to mitigate risks associated with this vulnerability through software updates and robust network monitoring practices.",Qualcomm,Snapdragon 8\+ Gen 2 Mobile Platform Firmware,7.5,HIGH,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-10-07T13:15:00.000Z,0
CVE-2022-25673,https://securityvulnerability.io/vulnerability/CVE-2022-25673,Denial of Service Vulnerability in Snapdragon Mobile Modem by Qualcomm,"A Denial of Service vulnerability exists in Qualcomm's Snapdragon Mobile modem. This issue arises from an assertion that can be triggered while processing configuration data received over the network. If exploited, it may lead to service interruption, impacting device functionality and user experience. It is crucial for affected users to apply recommended updates to mitigate potential risks.",Qualcomm,Snapdragon Mobile,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25711,https://securityvulnerability.io/vulnerability/CVE-2022-25711,Memory Corruption Vulnerability in Qualcomm Snapdragon Products,"The vulnerability stems from improper validation of an array index in various Qualcomm Snapdragon products, potentially leading to memory corruption. This could allow unauthorized access or manipulation of system resources, impacting the overall security and functionality of affected devices.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables",6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25689,https://securityvulnerability.io/vulnerability/CVE-2022-25689,Denial of Service Vulnerability in Qualcomm Snapdragon Mobile,"A denial of service vulnerability has been identified in Qualcomm's Snapdragon Mobile due to a reachable assertion. This flaw can be exploited to disrupt services, impacting device performance and user experience. It is essential for users and organizations relying on Snapdragon technology to be informed about this vulnerability and to stay updated on security advisories to mitigate potential risks.",Qualcomm,Snapdragon Mobile,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25695,https://securityvulnerability.io/vulnerability/CVE-2022-25695,Memory Corruption in Snapdragon Products by Qualcomm,"This vulnerability involves a memory corruption issue within Qualcomm's Snapdragon platforms due to improper validation of array indices during the processing of GSTK Proactive commands. It affects a wide range of Snapdragon products, potentially exposing them to various security risks. Users and developers are advised to review affected product documentation and implement recommended security measures.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-33238,https://securityvulnerability.io/vulnerability/CVE-2022-33238,Denial of Service Vulnerability in Snapdragon Products by Qualcomm,"A transient denial of service vulnerability is present in Qualcomm's Snapdragon products due to a loop with an unreachable exit condition when processing incoming FTM frames. This issue can lead to significant disruptions, impacting device functionality across various Snapdragon platforms including automotive, consumer electronics, and IoT applications.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25691,https://securityvulnerability.io/vulnerability/CVE-2022-25691,Denial of Service Vulnerability in Snapdragon Mobile Modem by Qualcomm,"This vulnerability pertains to a denial of service issue in Qualcomm's Snapdragon mobile modems. It arises from a reachable assertion that occurs while processing SIB1 with invalid SCS (Subcarrier Spacing) and bandwidth settings. This flaw could potentially lead to service disruptions, preventing users from effectively utilizing mobile connectivity. Organizations using affected Snapdragon modems should be aware of this issue and take necessary precautions to mitigate risks associated with invalid configurations.",Qualcomm,Snapdragon Mobile,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25692,https://securityvulnerability.io/vulnerability/CVE-2022-25692,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"This vulnerability allows a denial of service condition in Qualcomm's Snapdragon product family, affecting various modules including Auto, Compute, Industrial IoT, Mobile, and Wearables. The issue arises from a reachable assertion when processing the common configuration procedure, which can disrupt system functionality.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25702,https://securityvulnerability.io/vulnerability/CVE-2022-25702,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"This vulnerability presents a denial of service risk in Qualcomm's Snapdragon products due to a reachable assertion triggered while processing reconfiguration messages. This issue affects various devices within the Snapdragon Auto, Compute, Industrial IoT, Mobile, and Wearable categories, potentially leading to significant disruptions in device operations.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25677,https://securityvulnerability.io/vulnerability/CVE-2022-25677,Memory Corruption Vulnerability in Qualcomm Snapdragon Products,"A memory corruption issue exists within Qualcomm's Snapdragon product line due to improper handling of memory during the processing of DCI packets. This type of vulnerability arises from a use-after-free scenario, where memory that has already been released is accessed again, potentially leading to arbitrary code execution or system instability. Affected systems include a broad range of Snapdragon platforms, which are widely utilized in automotive, industrial, mobile, consumer IoT, and networking applications. Prompt attention to this vulnerability is essential for maintaining system integrity and security.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25685,https://securityvulnerability.io/vulnerability/CVE-2022-25685,Denial of Service in Snapdragon Product Lines by Qualcomm,"The vulnerability in Qualcomm's Snapdragon product lines is due to improper authorization during error handling in multiple Snapdragon modules. This flaw could allow an attacker to perform a Denial of Service (DoS) attack, potentially disrupting the functionality of affected devices. Devices utilizing Snapdragon technology, including automotive, IoT, mobile, and wearables, are at risk, emphasizing the need for timely security updates and rigorous testing to protect against exploitation.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables",7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25675,https://securityvulnerability.io/vulnerability/CVE-2022-25675,Denial of Service in Snapdragon Products by Qualcomm,"This vulnerability pertains to a denial of service that arises from a reachable assertion in the modem. This can occur when processing filter rules received from an application client, affecting various Snapdragon platforms, including Snapdragon Compute, Industrial IoT, and Mobile devices. The flaw could lead to system instability, interrupting normal operations and impacting user experience.",Qualcomm,"Snapdragon Compute, Snapdragon Industrial Iot, Snapdragon Mobile",5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25712,https://securityvulnerability.io/vulnerability/CVE-2022-25712,Memory Corruption in Snapdragon Products by Qualcomm,"A memory corruption vulnerability has been identified in various Qualcomm Snapdragon products, including Snapdragon Auto, Compute, Consumer IoT, Mobile, and Wearables. This issue arises from insufficient checking of input sizes during buffer copying operations, which could potentially lead to unauthorized access or modification of system memory. Exploitation of this vulnerability may compromise the integrity and availability of affected devices, necessitating immediate attention from users and device manufacturers.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Mobile, Snapdragon Wearables",6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25672,https://securityvulnerability.io/vulnerability/CVE-2022-25672,Denial of Service Vulnerability in Snapdragon Mobile MODEM by Qualcomm,"A vulnerability has been identified in the Snapdragon Mobile MODEM that may lead to a denial-of-service condition due to a reachable assertion when processing SIB1 with invalid bandwidth parameters. This issue can interrupt services and degrade performance, impacting user experience. It is crucial for affected users to stay informed about this vulnerability and apply necessary mitigations as provided by Qualcomm.",Qualcomm,Snapdragon Mobile,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25697,https://securityvulnerability.io/vulnerability/CVE-2022-25697,Memory Corruption Vulnerability in Snapdragon Mobile and Wearable Devices,"A memory corruption vulnerability exists in the i2c buses of Snapdragon Mobile and Wearables, caused by improper input validation when reading address configurations from the i2c driver. This flaw may allow attackers to manipulate the device's memory, potentially leading to unexpected behavior or unauthorized access to sensitive data. It is critical for users and developers to implement proper security measures to mitigate the risks associated with this vulnerability.",Qualcomm,"Snapdragon Mobile, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-33235,https://securityvulnerability.io/vulnerability/CVE-2022-33235,Buffer Over-Read Vulnerability in Qualcomm Snapdragon Products,"A vulnerability has been identified in various Qualcomm Snapdragon products, stemming from a buffer over-read issue within the WLAN firmware. This flaw arises while parsing security context information attributes, potentially allowing unauthorized parties access to sensitive information. The affected Snapdragon series includes a wide array of applications, from consumer electronics to connectivity solutions, posing significant risks across multiple devices and environments.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking",8.2,HIGH,0.0012700000079348683,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25698,https://securityvulnerability.io/vulnerability/CVE-2022-25698,Memory Corruption Issue in Snapdragon Mobile and Wearables by Qualcomm,"The memory corruption vulnerability in Qualcomm's Snapdragon Mobile and Wearables is caused by improper input validation during the reading of address configurations from SPI buses. This flaw could potentially allow an attacker to exploit the system, leading to unauthorized access or system instability. Ensuring proper input validation is critical for maintaining the security integrity of the Snapdragon ecosystem. For detailed mitigation steps, please refer to the official Qualcomm bulletin.",Qualcomm,"Snapdragon Mobile, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-33268,https://securityvulnerability.io/vulnerability/CVE-2022-33268,Buffer Over-Read Vulnerability in Qualcomm Snapdragon Products,"A vulnerability exists in Qualcomm's Snapdragon product line that allows for information disclosure via a buffer over-read during the Bluetooth pairing and connection process with A2DP. This issue affects multiple Snapdragon variants, including Auto, Compute, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wearables, potentially exposing sensitive data during Bluetooth interactions.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.2,HIGH,0.0006099999882280827,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25682,https://securityvulnerability.io/vulnerability/CVE-2022-25682,Memory Corruption in Qualcomm Snapdragon Products,"A memory corruption vulnerability exists in the Qualcomm Snapdragon family of products, caused by the improper handling of out of range pointer offsets during command decoding from the UIM card. This issue affects numerous device categories, including automotive, computing, connectivity, IoT for consumers and industries, mobile devices, and wearables. Successful exploitation could potentially allow an attacker to execute arbitrary code or cause unexpected behavior in affected devices, raising significant security concerns.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25681,https://securityvulnerability.io/vulnerability/CVE-2022-25681,Memory Corruption Vulnerability in Qualcomm Snapdragon Products,"A memory corruption vulnerability exists in Qualcomm's Snapdragon product line, which could lead to improper handling of memory access. The issue arises from the hypervisor failing to correctly invalidate processor translation caches, potentially impacting the security and stability of devices utilizing Snapdragon Auto, Compute, Consumer IoT, Industrial IoT, and Mobile platforms. Users are encouraged to follow security advisories to mitigate any risks associated with this vulnerability.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile",8.4,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-13T00:00:00.000Z,0
CVE-2022-25679,https://securityvulnerability.io/vulnerability/CVE-2022-25679,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"This vulnerability involves a denial of service scenario due to improper access control in broadcast receivers within various Qualcomm Snapdragon products. Affected products include Snapdragon Compute, Consumer IOT, Industrial IOT, Mobile, and Wearables, potentially allowing attackers to disrupt services and impact device functionality. It's essential to implement the recommended security measures to mitigate risks related to these vulnerabilities.",Qualcomm,"Snapdragon Compute, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables",6.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25710,https://securityvulnerability.io/vulnerability/CVE-2022-25710,Denial of Service Vulnerability in Qualcomm Snapdragon Products,"This vulnerability affects multiple Qualcomm Snapdragon products, causing a denial of service condition due to a null pointer dereference when the GATT (Generic Attribute Profile) connection is disconnected. This issue has implications for device stability and user experience, particularly in environments reliant on consistent connectivity like automotive and IoT applications.",Qualcomm,"Snapdragon Auto, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Voice & Music",7.5,HIGH,0.0008800000068731606,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-33234,https://securityvulnerability.io/vulnerability/CVE-2022-33234,Memory Corruption Vulnerability in Snapdragon Products by Qualcomm,"A memory corruption vulnerability exists in several Qualcomm Snapdragon products due to inadequate configuration. This flaw affects Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, Mobile, and Wearables devices, potentially leading to unauthorized access or malfunction. Users are advised to ensure their devices are updated to mitigate any potential risks associated with this vulnerability.",Qualcomm,"Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Iot, Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables",7.3,HIGH,0.0017099999822676182,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0
CVE-2022-25671,https://securityvulnerability.io/vulnerability/CVE-2022-25671,Denial of Service Vulnerability in Snapdragon Mobile by Qualcomm,"A vulnerability exists in Snapdragon Mobile where a reachable assertion may lead to a denial of service. This type of vulnerability can result in a device becoming unresponsive, impacting its usability. Users of impacted Snapdragon Mobile products should be cautious and consider applying any available patches or updates to mitigate potential risks.",Qualcomm,Snapdragon Mobile,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-11-15T00:00:00.000Z,0