Qualcomm Snapdragon 675 Mobile Platform
Approved changes feed: RSS · Atom
cpe:2.3:h:qualcomm:snapdragon_675_mobile_platform:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Qualcomm (4194a0de-9926-556d-a143-7609c2315dd6) |
|---|---|
| Product | Snapdragon 675 Mobile Platform (7aa71b90-71e1-560d-9bc9-3a191d283b2e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-27066 |
not_vulnerable | 2026-06-03 15:00:11.088705 |
Reachable Assertion in WLAN Firmware
HIGH (7.5)
Transient DOS while processing an ANQP message.
Published: 2025-08-06T07:26:03.160Z
Updated: 2025-08-06T13:36:36.865Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27054 |
not_vulnerable | 2026-06-03 15:00:10.521162 |
Out-of-bounds Write in Display
HIGH (7.8)
Memory corruption while processing a malformed license file during reboot.
Published: 2025-10-09T03:18:03.164Z
Updated: 2026-02-26T17:48:07.760Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27053 |
not_vulnerable | 2026-06-03 15:00:10.367188 |
Incorrect Calculation of Buffer Size in HLOS
HIGH (7.8)
Memory corruption during PlayReady APP usecase while processing TA commands.
Published: 2025-10-09T03:18:00.779Z
Updated: 2026-02-26T17:48:08.266Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27032 |
not_vulnerable | 2026-06-03 15:00:09.440232 |
Improper Access Control Applied to Mirrored or Aliased Memory Regions in Hypervisor
HIGH (7.8)
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
Published: 2025-09-24T15:33:38.574Z
Updated: 2026-02-26T17:48:13.128Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21487 |
not_vulnerable | 2026-06-03 14:59:22.295555 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
Published: 2025-09-24T15:33:34.551Z
Updated: 2025-09-25T15:49:14.163Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21484 |
not_vulnerable | 2026-06-03 14:59:22.269294 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.
Published: 2025-09-24T15:33:32.879Z
Updated: 2025-09-25T15:49:19.403Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21483 |
not_vulnerable | 2026-06-03 14:59:22.252534 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Data Network Stack & Connectivity
CRITICAL (9.8)
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
Published: 2025-09-24T15:33:31.586Z
Updated: 2026-02-26T17:48:13.763Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21481 |
not_vulnerable | 2026-06-03 14:59:21.947840 |
Buffer Copy Without Checking Size of Input in HLOS
HIGH (7.8)
Memory corruption while performing private key encryption in trusted application.
Published: 2025-09-24T15:33:27.834Z
Updated: 2026-02-26T17:48:14.912Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21465 |
not_vulnerable | 2026-06-03 14:59:21.734753 |
Out-of-bounds Read in Core
MEDIUM (6.5)
Information disclosure while processing the hash segment in an MBN file.
Published: 2025-08-06T07:25:55.226Z
Updated: 2025-08-06T19:26:20.064Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21464 |
not_vulnerable | 2026-06-03 14:59:21.623891 |
Out-of-bounds Read in Core
MEDIUM (6.5)
Information disclosure while reading data from an image using specified offset and size parameters.
Published: 2025-08-06T07:25:53.752Z
Updated: 2025-08-06T19:25:57.162Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21430 |
not_vulnerable | 2026-06-03 14:59:20.418479 | db.gcve.eu returned HTTP 503. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21429 |
not_vulnerable | 2026-06-03 14:59:19.976661 | db.gcve.eu returned HTTP 503. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53026 |
not_vulnerable | 2026-06-03 14:57:39.029671 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
Published: 2025-06-03T05:52:57.455Z
Updated: 2025-06-03T15:11:13.353Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53021 |
not_vulnerable | 2026-06-03 14:57:38.854276 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur while processing goodbye RTCP packet from network.
Published: 2025-06-03T05:52:55.940Z
Updated: 2025-06-03T15:10:54.652Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53020 |
not_vulnerable | 2026-06-03 14:57:38.840950 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Published: 2025-06-03T05:52:54.550Z
Updated: 2025-06-03T14:49:32.785Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53010 |
not_vulnerable | 2026-06-03 14:57:38.173162 |
Improper Access Control in Core
HIGH (7.8)
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
Published: 2025-06-03T05:52:46.186Z
Updated: 2025-06-03T13:34:12.254Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45551 |
not_vulnerable | 2026-06-03 14:56:57.462964 |
Weak Authentication in HLOS
MEDIUM (6.2)
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
Published: 2025-04-07T10:15:44.780Z
Updated: 2025-04-07T16:49:45.365Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43046 |
not_vulnerable | 2026-06-03 14:56:43.238630 |
Information Exposure in TZ Secure OS
MEDIUM (5.5)
There may be information disclosure during memory re-allocation in TZ Secure OS.
Published: 2025-04-07T10:15:31.869Z
Updated: 2025-04-07T16:02:40.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38423 |
not_vulnerable | 2026-06-03 14:56:18.127562 |
Buffer Copy Without Checking Size of Input in Graphics Linux
HIGH (7.8)
Memory corruption while processing GPU page table switch.
Published: 2024-11-04T10:05:00.972Z
Updated: 2024-11-04T14:53:37.988Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38422 |
not_vulnerable | 2026-06-03 14:56:18.056316 | db.gcve.eu returned HTTP 503. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33058 |
not_vulnerable | 2026-06-03 14:55:51.617632 |
Insufficient Granularity of Access Control in Core
HIGH (7.5)
Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.
Published: 2025-04-07T10:15:30.276Z
Updated: 2025-04-07T16:06:36.533Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33056 |
not_vulnerable | 2026-06-03 14:55:51.471816 | db.gcve.eu returned HTTP 503. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33044 |
not_vulnerable | 2026-06-03 14:55:50.766385 |
Improper Validation of Array Index in Hypervisor
HIGH (8.4)
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
Published: 2024-12-02T10:18:43.847Z
Updated: 2024-12-03T04:55:34.319Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33043 |
not_vulnerable | 2026-06-03 14:55:50.686431 |
Buffer Over-read in FM Host
MEDIUM (5.5)
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
Published: 2024-09-02T10:22:36.572Z
Updated: 2024-09-03T13:55:47.186Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33027 |
not_vulnerable | 2026-06-03 14:55:50.231662 |
Improper Access Control in Graphics Linux
HIGH (8.4)
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
Published: 2024-08-05T14:21:47.683Z
Updated: 2024-08-05T14:39:13.023Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33016 |
not_vulnerable | 2026-06-03 14:55:49.723741 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Storage
MEDIUM (6.8)
memory corruption when an invalid firehose patch command is invoked.
Published: 2024-09-02T10:22:32.425Z
Updated: 2024-09-03T14:02:35.440Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33014 |
not_vulnerable | 2026-06-03 14:55:49.460905 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing ESP IE from beacon/probe response frame.
Published: 2024-08-05T14:21:35.794Z
Updated: 2024-08-05T15:33:16.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23373 |
not_vulnerable | 2026-06-03 14:55:03.588750 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Published: 2024-07-01T14:17:20.786Z
Updated: 2024-08-01T23:06:24.305Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23368 |
not_vulnerable | 2026-06-03 14:55:03.500102 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
HIGH (7.8)
Memory corruption when allocating and accessing an entry in an SMEM partition.
Published: 2024-07-01T14:17:17.981Z
Updated: 2024-08-01T23:06:24.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23362 |
not_vulnerable | 2026-06-03 14:55:03.168178 |
Improper Input Validation in Trusted Execution Environment
HIGH (7.1)
Cryptographic issue while parsing RSA keys in COBR format.
Published: 2024-09-02T10:22:29.332Z
Updated: 2024-09-05T03:56:03.375Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23357 |
not_vulnerable | 2026-06-03 14:55:02.984863 |
NULL Pointer Dereference in HLOS
MEDIUM (6.2)
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
Published: 2024-08-05T14:21:25.013Z
Updated: 2024-08-05T15:17:20.073Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23356 |
not_vulnerable | 2026-06-03 14:55:02.908504 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
HIGH (7.8)
Memory corruption during session sign renewal request calls in HLOS.
Published: 2024-08-05T14:21:23.701Z
Updated: 2024-08-15T03:55:43.129Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23353 |
not_vulnerable | 2026-06-03 14:55:02.686011 |
Buffer Over-read in Multi Mode Call Processor
HIGH (7.5)
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
Published: 2024-08-05T14:21:21.075Z
Updated: 2024-08-05T15:14:49.239Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21481 |
not_vulnerable | 2026-06-03 14:54:49.519513 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Hypervisor
HIGH (8.4)
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
Published: 2024-08-05T14:21:17.518Z
Updated: 2024-08-15T03:55:39.689Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21469 |
not_vulnerable | 2026-06-03 14:54:49.051369 |
Permissions, Privileges, and Access Control issues in TZ Secure OS
HIGH (7.3)
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
Published: 2024-07-01T14:17:15.436Z
Updated: 2024-08-01T22:20:40.597Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21465 |
not_vulnerable | 2026-06-03 14:54:48.778472 |
Buffer Over-read in Trusted Execution Environment
HIGH (7.8)
Memory corruption while processing key blob passed by the user.
Published: 2024-07-01T14:17:12.663Z
Updated: 2024-08-01T22:20:40.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21462 |
not_vulnerable | 2026-06-03 14:54:48.613745 |
Buffer Over-read in TZ Secure OS
HIGH (7.1)
Transient DOS while loading the TA ELF file.
Published: 2024-07-01T14:17:11.022Z
Updated: 2024-08-01T22:20:40.868Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21461 |
not_vulnerable | 2026-06-03 14:54:48.463406 |
Double Free in HLOS
HIGH (8.4)
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Published: 2024-07-01T14:17:09.366Z
Updated: 2024-08-01T22:20:40.630Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43536 |
not_vulnerable | 2026-06-03 14:53:02.940964 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS while parse fils IE with length equal to 1.
Published: 2024-02-06T05:47:33.289Z
Updated: 2024-08-02T19:44:43.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43533 |
not_vulnerable | 2026-06-03 14:53:02.838746 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.
Published: 2024-02-06T05:47:28.736Z
Updated: 2025-05-15T19:44:50.713Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43522 |
not_vulnerable | 2026-06-03 14:53:02.516409 |
NULL Pointer Dereference in WLAN Firmware
HIGH (7.5)
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
Published: 2024-02-06T05:47:24.174Z
Updated: 2024-08-21T20:34:17.830Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43519 |
not_vulnerable | 2026-06-03 14:53:02.328753 |
Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Video
HIGH (7.3)
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
Published: 2024-02-06T05:47:21.253Z
Updated: 2024-08-02T19:44:42.886Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43518 |
not_vulnerable | 2026-06-03 14:53:02.318414 |
Untrusted Pointer Dereference in Video
HIGH (7.3)
Memory corruption in video while parsing invalid mp2 clip.
Published: 2024-02-06T05:47:19.935Z
Updated: 2024-08-02T19:44:42.706Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43513 |
not_vulnerable | 2026-06-03 14:53:02.242445 |
Use of Out-of-range Pointer Offset in PCIe
HIGH (7.8)
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
Published: 2024-02-06T05:47:15.705Z
Updated: 2025-06-16T18:11:12.210Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43511 |
not_vulnerable | 2026-06-03 14:53:02.041110 |
Loop with Unreachable Exit Condition (Infinite Loop) in WLAN Firmware
HIGH (7.5)
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
Published: 2024-01-02T05:38:53.528Z
Updated: 2025-06-16T19:53:38.503Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33120 |
not_vulnerable | 2026-06-03 14:52:12.724149 |
Use After Free in Audio
HIGH (7.8)
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
Published: 2024-01-02T05:38:51.959Z
Updated: 2025-06-03T14:46:01.965Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33114 |
not_vulnerable | 2026-06-03 14:52:12.386540 |
Use after free in Neural Processing Unit
HIGH (8.4)
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
Published: 2024-01-02T05:38:46.886Z
Updated: 2024-11-14T19:23:48.673Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33110 |
not_vulnerable | 2026-06-03 14:52:12.257583 |
Use of Out-of-range Pointer Offset in Audio
HIGH (7.8)
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.
Published: 2024-01-02T05:38:43.225Z
Updated: 2025-05-21T14:09:00.711Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33109 |
not_vulnerable | 2026-06-03 14:52:12.211080 |
NULL Pointer Dereference in WLAN Firmware
HIGH (7.5)
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
Published: 2024-01-02T05:38:41.562Z
Updated: 2025-06-16T18:35:57.084Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33107 |
not_vulnerable | 2026-06-03 14:52:12.081659 |
Integer Overflow or Wraparound in Graphics Linux
HIGH (8.4)
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Published: 2023-12-05T03:04:29.196Z
Updated: 2025-10-21T23:05:30.590Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33088 |
not_vulnerable | 2026-06-03 14:52:04.420303 |
NULL pointer dereference in WLAN Firmware
HIGH (8.4)
Memory corruption when processing cmd parameters while parsing vdev.
Published: 2023-12-05T03:04:21.594Z
Updated: 2024-08-02T15:32:46.624Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33080 |
not_vulnerable | 2026-06-03 14:52:04.224595 |
Buffer over-read in WLAN Firmware
HIGH (7.5)
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
Published: 2023-12-05T03:04:15.707Z
Updated: 2024-10-10T19:36:42.225Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33076 |
not_vulnerable | 2026-06-03 14:52:04.021980 |
Configuration Issue in Core
MEDIUM (5.9)
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
Published: 2024-02-06T05:47:12.814Z
Updated: 2025-06-17T21:29:26.231Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33072 |
not_vulnerable | 2026-06-03 14:52:04.007196 |
Buffer copy without checking size of Input in Core
CRITICAL (9.3)
Memory corruption in Core while processing control functions.
Published: 2024-02-06T05:47:11.221Z
Updated: 2025-05-15T19:45:11.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33070 |
not_vulnerable | 2026-06-03 14:52:03.857372 |
Improper Authentication in Automotive OS
HIGH (7.1)
Transient DOS in Automotive OS due to improper authentication to the secure IO calls.
Published: 2023-12-05T03:04:12.248Z
Updated: 2025-05-29T13:31:38.841Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33063 |
not_vulnerable | 2026-06-03 14:52:03.602406 |
Use After Free in DSP Services
HIGH (7.8)
Memory corruption in DSP Services during a remote call from HLOS to DSP.
Published: 2023-12-05T03:04:10.949Z
Updated: 2025-10-21T23:05:31.211Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33062 |
not_vulnerable | 2026-06-03 14:52:03.411373 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware while parsing a BTM request.
Published: 2024-01-02T05:38:36.201Z
Updated: 2025-06-17T20:19:53.666Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33059 |
not_vulnerable | 2026-06-03 14:52:03.378644 |
Buffer Copy Without Checking Size of Input in Audio
HIGH (7.8)
Memory corruption in Audio while processing the VOC packet data from ADSP.
Published: 2023-11-07T05:26:54.139Z
Updated: 2025-12-16T18:23:23.327Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33054 |
not_vulnerable | 2026-06-03 14:52:03.139811 |
Improper Authentication in GPS HLOS Driver
CRITICAL (9.1)
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
Published: 2023-12-05T03:04:09.667Z
Updated: 2024-08-02T15:32:46.540Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33040 |
not_vulnerable | 2026-06-03 14:52:02.702069 |
Buffer Over-read in Data Modem
HIGH (7.5)
Transient DOS in Data Modem during DTLS handshake.
Published: 2024-01-02T05:38:34.624Z
Updated: 2025-06-03T14:46:23.285Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33038 |
not_vulnerable | 2026-06-03 14:52:02.690287 |
Integer Overflow or Wraparound in Radio Interface Layer
MEDIUM (6.7)
Memory corruption while receiving a message in Bus Socket Transport Server.
Published: 2024-01-02T05:38:33.322Z
Updated: 2024-11-14T19:30:38.544Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33036 |
not_vulnerable | 2026-06-03 14:52:02.675216 |
NULL Pointer Dereference in Hypervisor
HIGH (7.1)
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.
Published: 2024-01-02T05:38:30.949Z
Updated: 2024-09-06T17:55:28.533Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33033 |
not_vulnerable | 2026-06-03 14:52:02.651966 |
Use of Out-of-range Pointer Offset in Audio
HIGH (8.4)
Memory corruption in Audio during playback with speaker protection.
Published: 2024-01-02T05:38:29.493Z
Updated: 2025-05-21T14:06:28.914Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33032 |
not_vulnerable | 2026-06-03 14:52:02.579193 |
Integer Overflow or Wraparound in TZ Secure OS
CRITICAL (9.3)
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Published: 2024-01-02T05:38:28.022Z
Updated: 2025-06-16T18:30:24.014Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33030 |
not_vulnerable | 2026-06-03 14:52:02.485570 |
Buffer Copy without Checking Size of Input in HLOS
CRITICAL (9.3)
Memory corruption in HLOS while running playready use-case.
Published: 2024-01-02T05:38:26.512Z
Updated: 2025-06-03T14:46:27.869Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33027 |
not_vulnerable | 2026-06-03 14:52:02.310807 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware while parsing rsn ies.
Published: 2023-10-03T05:00:40.127Z
Updated: 2024-08-02T15:32:46.565Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33022 |
not_vulnerable | 2026-06-03 14:52:01.837724 |
Integer Overflow to Buffer Overflow in HLOS
HIGH (8.4)
Memory corruption in HLOS while invoking IOCTL calls from user-space.
Published: 2023-12-05T03:04:02.255Z
Updated: 2025-05-29T13:32:24.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33018 |
not_vulnerable | 2026-06-03 14:52:01.628859 |
Integer Overflow to Buffer Overflow in User Identity Module
HIGH (7.8)
Memory corruption while using the UIM diag command to get the operators name.
Published: 2023-12-05T03:04:00.939Z
Updated: 2024-10-10T19:47:58.281Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33017 |
not_vulnerable | 2026-06-03 14:52:01.451457 |
Buffer Copy Without Checking Size of Input in Boot
HIGH (7.8)
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
Published: 2023-12-05T03:03:59.402Z
Updated: 2024-08-02T15:32:46.510Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28588 |
not_vulnerable | 2026-06-03 14:51:12.991092 |
Integer Overflow or Wraparound in Bluetooth Host
HIGH (7.5)
Transient DOS in Bluetooth Host while rfc slot allocation.
Published: 2023-12-05T03:03:58.097Z
Updated: 2024-08-02T13:43:23.180Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28586 |
not_vulnerable | 2026-06-03 14:51:12.845679 |
Improper Restriction of Operation within the Bounds of a Memory Buffer in TZ Secure OS
MEDIUM (6)
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
Published: 2023-12-05T03:03:55.223Z
Updated: 2024-12-02T17:11:28.311Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28585 |
not_vulnerable | 2026-06-03 14:51:12.826425 |
Integer Overflow to Buffer Overflow in TZ Secure OS
HIGH (8.2)
Memory corruption while loading an ELF segment in TEE Kernel.
Published: 2023-12-05T03:03:53.662Z
Updated: 2026-02-25T16:51:08.675Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28569 |
not_vulnerable | 2026-06-03 14:51:12.335222 |
Buffer Over-read in WLAN HAL
MEDIUM (6.1)
Information disclosure in WLAN HAL while handling command through WMI interfaces.
Published: 2023-11-07T05:26:42.279Z
Updated: 2024-08-02T13:43:22.620Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28568 |
not_vulnerable | 2026-06-03 14:51:12.321083 |
Buffer Over-read in WLAN HAL
MEDIUM (6.1)
Information disclosure in WLAN HAL when reception status handler is called.
Published: 2023-11-07T05:26:40.000Z
Updated: 2024-08-02T13:43:23.667Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28566 |
not_vulnerable | 2026-06-03 14:51:12.206048 |
Buffer Over-read in WLAN HAL
MEDIUM (6.1)
Information disclosure in WLAN HAL while handling the WMI state info command.
Published: 2023-11-07T05:26:38.950Z
Updated: 2024-08-02T13:43:22.544Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28563 |
not_vulnerable | 2026-06-03 14:51:11.857838 |
Buffer Over-read in IOE Firmware
MEDIUM (6.1)
Information disclosure in IOE Firmware while handling WMI command.
Published: 2023-11-07T05:26:37.887Z
Updated: 2024-08-02T13:43:23.473Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28560 |
not_vulnerable | 2026-06-03 14:51:11.778510 |
Buffer Copy Without Checking Size of Input in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
Published: 2023-09-05T06:24:17.160Z
Updated: 2025-02-27T21:02:03.721Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28559 |
not_vulnerable | 2026-06-03 14:51:11.654425 |
Buffer Copy Without Checking Size of Input in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.
Published: 2023-09-05T06:24:15.784Z
Updated: 2025-02-27T21:02:10.588Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28558 |
not_vulnerable | 2026-06-03 14:51:11.572709 |
Improper Validation of Array Index in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN handler while processing PhyID in Tx status handler.
Published: 2023-09-05T06:24:14.024Z
Updated: 2024-08-02T13:43:23.150Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28557 |
not_vulnerable | 2026-06-03 14:51:11.540882 |
Improper Validation of Array Index in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
Published: 2023-09-05T06:24:12.673Z
Updated: 2024-08-02T13:43:23.051Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28556 |
not_vulnerable | 2026-06-03 14:51:11.418896 |
Improper Authorization in HLOS
HIGH (7.1)
Cryptographic issue in HLOS during key management.
Published: 2023-11-07T05:26:36.631Z
Updated: 2024-08-02T13:43:22.844Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28551 |
not_vulnerable | 2026-06-03 14:51:11.230709 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in UTILS
HIGH (7.8)
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
Published: 2023-12-05T03:03:50.075Z
Updated: 2024-08-02T13:43:23.278Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28550 |
not_vulnerable | 2026-06-03 14:51:11.183187 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in MPP Performance
HIGH (7.8)
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
Published: 2023-12-05T03:03:48.538Z
Updated: 2024-08-02T13:43:22.782Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28546 |
not_vulnerable | 2026-06-03 14:51:10.718193 |
Buffer Copy Without Checking Size of Input in SPS Applications
HIGH (7.8)
Memory Corruption in SPS Application while exporting public key in sorter TA.
Published: 2023-12-05T03:03:46.993Z
Updated: 2026-02-25T16:51:09.392Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28545 |
not_vulnerable | 2026-06-03 14:51:10.587300 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in TZ Secure OS
HIGH (8.2)
Memory corruption in TZ Secure OS while loading an app ELF.
Published: 2023-11-07T05:26:32.849Z
Updated: 2024-08-02T13:43:22.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28544 |
not_vulnerable | 2026-06-03 14:51:10.492023 |
Buffer Copy without Checking the Size of Input in WLAN Firmware
HIGH (7.8)
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.
Published: 2023-09-05T06:24:08.152Z
Updated: 2025-02-27T21:02:34.781Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28540 |
not_vulnerable | 2026-06-03 14:51:10.120797 |
Improper Authentication in Data Modem
CRITICAL (9.1)
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
Published: 2023-10-03T05:00:36.519Z
Updated: 2025-02-27T20:47:44.136Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24852 |
not_vulnerable | 2026-06-03 14:49:31.405886 |
Improper Authentication in Core
HIGH (8.4)
Memory Corruption in Core due to secure memory access by user while loading modem image.
Published: 2023-11-07T05:26:31.358Z
Updated: 2024-08-02T11:03:19.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24850 |
not_vulnerable | 2026-06-03 14:49:31.196443 |
Improper Validation of Array Index in HLOS
HIGH (7.8)
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
Published: 2023-10-03T05:00:31.983Z
Updated: 2025-02-27T20:48:09.352Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24849 |
not_vulnerable | 2026-06-03 14:49:31.096063 |
Buffer Over-read in Data Modem
HIGH (8.2)
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
Published: 2023-10-03T05:00:30.792Z
Updated: 2024-08-02T11:03:19.341Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24848 |
not_vulnerable | 2026-06-03 14:49:31.039721 |
Buffer Over-read in Data Modem
HIGH (8.2)
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
Published: 2023-10-03T05:00:29.170Z
Updated: 2024-08-02T11:03:19.272Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24847 |
not_vulnerable | 2026-06-03 14:49:30.920164 |
NULL pointer Dereference in Modem
HIGH (7.5)
Transient DOS in Modem while allocating DSM items.
Published: 2023-10-03T05:00:27.519Z
Updated: 2024-08-02T11:03:19.321Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-22388 |
not_vulnerable | 2026-06-03 14:49:18.502228 |
Use of Out-of-range Pointer Offset in Multi-mode Call Processor
CRITICAL (9.8)
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Published: 2023-11-07T05:26:29.886Z
Updated: 2025-12-16T18:23:25.695Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-22385 |
not_vulnerable | 2026-06-03 14:49:18.303468 |
Buffer Over-read in Data Modem
HIGH (8.2)
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
Published: 2023-10-03T05:00:23.604Z
Updated: 2024-08-02T10:07:06.546Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21673 |
not_vulnerable | 2026-06-03 14:49:15.356492 |
Improper Access Control in Kernel
HIGH (8.7)
Improper Access to the VM resource manager can lead to Memory Corruption.
Published: 2023-10-03T05:00:19.919Z
Updated: 2025-02-27T20:48:34.744Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21670 |
not_vulnerable | 2026-06-03 14:49:15.255186 |
Improper Access control in GPU Subsystem
HIGH (7.8)
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
Published: 2023-06-06T07:39:21.348Z
Updated: 2025-01-07T19:33:15.172Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21669 |
not_vulnerable | 2026-06-03 14:49:15.190266 |
Buffer Over-read in WLAN HOST
HIGH (8.2)
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.
Published: 2023-06-06T07:39:19.848Z
Updated: 2024-08-02T09:44:02.184Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21659 |
not_vulnerable | 2026-06-03 14:49:14.864406 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware while processing frames with missing header fields.
Published: 2023-06-06T07:39:15.032Z
Updated: 2024-08-02T09:44:02.109Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21628 |
not_vulnerable | 2026-06-03 14:49:14.079808 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN HAL
HIGH (8.4)
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Published: 2023-06-06T07:39:07.103Z
Updated: 2024-08-02T09:44:01.610Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-40529 |
not_vulnerable | 2026-06-03 14:48:02.733107 |
Improper access control in Kernel
HIGH (7.1)
Memory corruption due to improper access control in kernel while processing a mapping request from root process.
Published: 2023-06-06T07:39:00.821Z
Updated: 2024-08-03T12:21:46.521Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-40523 |
not_vulnerable | 2026-06-03 14:48:02.651698 |
Information exposure in Kernel
HIGH (7.1)
Information disclosure in Kernel due to indirect branch misprediction.
Published: 2023-06-06T07:38:57.528Z
Updated: 2024-08-03T12:21:45.915Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-40521 |
not_vulnerable | 2026-06-03 14:48:02.589269 |
Improper authorization in Modem
HIGH (7.5)
Transient DOS due to improper authorization in Modem
Published: 2023-06-06T07:38:54.376Z
Updated: 2024-08-03T12:21:45.869Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-40507 |
not_vulnerable | 2026-06-03 14:48:01.825341 |
Double free in Core
HIGH (8.4)
Memory corruption due to double free in Core while mapping HLOS address to the list.
Published: 2023-06-06T07:38:52.586Z
Updated: 2025-01-07T19:33:51.689Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-33307 |
not_vulnerable | 2026-06-03 14:47:26.822016 |
Double free in Automotive
HIGH (8.4)
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
Published: 2023-06-06T07:38:50.743Z
Updated: 2024-08-03T08:01:20.479Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-33275 |
not_vulnerable | 2026-06-03 14:47:25.952494 |
Improper validation of array index in WLAN HAL
HIGH (8.4)
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Published: 2023-09-05T06:23:48.279Z
Updated: 2025-02-27T21:03:13.315Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-33264 |
not_vulnerable | 2026-06-03 14:47:25.625716 |
Stack-based buffer overflow in Modem
HIGH (7.9)
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
Published: 2023-06-06T07:38:45.938Z
Updated: 2024-08-03T08:01:20.589Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-33231 |
not_vulnerable | 2026-06-03 14:47:24.553659 |
Double free in Core
CRITICAL (9.3)
Memory corruption due to double free in core while initializing the encryption key.
Published: 2023-04-04T04:46:29.234Z
Updated: 2024-08-03T08:01:20.424Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-22076 |
not_vulnerable | 2026-06-03 14:46:16.049064 |
Cryptographic issue in Core
HIGH (7.1)
information disclosure due to cryptographic issue in Core during RPMB read request.
Published: 2023-06-06T07:38:33.401Z
Updated: 2024-08-03T03:00:55.353Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.