Qualcomm Snapdragon 680 4G Mobile Platform
Approved changes feed: RSS · Atom
cpe:2.3:h:qualcomm:snapdragon_680_4g_mobile_platform:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Qualcomm (4194a0de-9926-556d-a143-7609c2315dd6) |
|---|---|
| Product | Snapdragon 680 4G Mobile Platform (ced70d01-ad69-5ebd-b998-75878a51e50b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-21385 |
not_vulnerable | 2026-06-03 15:15:50.648719 |
Integer Overflow or Wraparound in Graphics
HIGH (7.8)
Memory corruption while using alignments for memory allocation.
Published: 2026-03-02T16:53:59.406Z
Updated: 2026-03-04T04:55:16.033Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-59600 |
not_vulnerable | 2026-06-03 15:06:25.775248 |
Buffer Over-read in Graphics
HIGH (7.8)
Memory Corruption when adding user-supplied data without checking available buffer space.
Published: 2026-03-02T16:53:56.962Z
Updated: 2026-03-03T04:56:13.893Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47392 |
not_vulnerable | 2026-06-03 15:01:32.005994 |
Integer Overflow or Wraparound in GPS
HIGH (8.8)
Memory corruption when decoding corrupted satellite data files with invalid signature offsets.
Published: 2026-04-06T15:33:43.837Z
Updated: 2026-04-07T03:55:44.389Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47386 |
not_vulnerable | 2026-06-03 15:01:31.774197 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
Published: 2026-03-02T16:53:55.829Z
Updated: 2026-03-03T04:56:09.300Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47383 |
not_vulnerable | 2026-06-03 15:01:31.705564 |
Missing Cryptographic Step in Data Modem
HIGH (7.2)
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.
Published: 2026-03-02T16:53:52.332Z
Updated: 2026-03-03T04:56:19.656Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47379 |
not_vulnerable | 2026-06-03 15:01:31.458737 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources.
Published: 2026-03-02T16:53:49.967Z
Updated: 2026-03-03T04:56:12.806Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47377 |
not_vulnerable | 2026-06-03 15:01:31.445732 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.
Published: 2026-03-02T16:53:47.804Z
Updated: 2026-03-03T04:56:16.078Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47376 |
not_vulnerable | 2026-06-03 15:01:31.427119 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.
Published: 2026-03-02T16:53:46.764Z
Updated: 2026-03-03T04:56:17.201Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47375 |
not_vulnerable | 2026-06-03 15:01:31.383033 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory corruption while handling different IOCTL calls from the user-space simultaneously.
Published: 2026-03-02T16:53:45.678Z
Updated: 2026-03-03T04:56:21.896Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47373 |
not_vulnerable | 2026-06-03 15:01:31.279617 |
Out-of-bounds Write in Automotive
HIGH (7.8)
Memory Corruption when accessing buffers with invalid length during TA invocation.
Published: 2026-03-02T16:53:44.535Z
Updated: 2026-03-02T19:09:28.558Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47371 |
not_vulnerable | 2026-06-03 15:01:31.097543 |
Reachable Assertion in Modem
MEDIUM (6.5)
Transient DOS when an LTE RLC packet with invalid TB is received by UE.
Published: 2026-03-02T16:53:43.416Z
Updated: 2026-03-02T19:13:56.421Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47369 |
not_vulnerable | 2026-06-03 15:01:30.934768 |
Information Exposure in Computer Vision
MEDIUM (5.5)
Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.
Published: 2026-01-06T22:48:43.390Z
Updated: 2026-01-07T16:15:38.029Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47348 |
not_vulnerable | 2026-06-03 15:01:30.569729 |
Use of Uninitialized Variable in HLOS
HIGH (7.8)
Memory corruption while processing identity credential operations in the trusted application.
Published: 2026-01-06T22:48:41.474Z
Updated: 2026-01-07T16:15:48.841Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47344 |
not_vulnerable | 2026-06-03 15:01:30.467810 |
Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver
MEDIUM (6.7)
Memory corruption while handling sensor utility operations.
Published: 2026-01-06T22:48:38.470Z
Updated: 2026-01-07T16:16:04.611Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47334 |
not_vulnerable | 2026-06-03 15:01:30.250692 |
Buffer Copy Without Checking Size of Input in Camera Driver
MEDIUM (6.7)
Memory corruption while processing shared command buffer packet between camera userspace and kernel.
Published: 2026-01-06T22:48:32.703Z
Updated: 2026-01-07T16:16:37.507Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47333 |
not_vulnerable | 2026-06-03 15:01:30.098023 |
Use After Free in HLOS
MEDIUM (6.6)
Memory corruption while handling buffer mapping operations in the cryptographic driver.
Published: 2026-01-06T22:48:31.727Z
Updated: 2026-01-07T16:16:43.267Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47331 |
not_vulnerable | 2026-06-03 15:01:30.050036 |
Buffer Over-read in Video
MEDIUM (6.1)
Information disclosure while processing a firmware event.
Published: 2026-01-06T22:48:29.721Z
Updated: 2026-01-07T16:16:53.290Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47330 |
not_vulnerable | 2026-06-03 15:01:29.949041 |
Buffer Over-read in Video
MEDIUM (5.5)
Transient DOS while parsing video packets received from the video firmware.
Published: 2026-01-06T22:48:28.547Z
Updated: 2026-01-07T16:16:58.348Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47323 |
not_vulnerable | 2026-06-03 15:01:29.614703 |
Integer Overflow or Wraparound in Audio
HIGH (7.8)
Memory corruption while routing GPR packets between user and root when handling large data packet.
Published: 2025-12-18T05:29:04.760Z
Updated: 2025-12-18T15:00:49.821Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47322 |
not_vulnerable | 2026-06-03 15:01:29.507155 |
Use After Free in Automotive Linux OS
HIGH (7.8)
Memory corruption while handling IOCTL calls to set mode.
Published: 2025-12-18T05:29:02.931Z
Updated: 2025-12-18T15:00:58.256Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47321 |
not_vulnerable | 2026-06-03 15:01:29.490877 |
Buffer Copy Without Checking Size of Input in Core Services
HIGH (7.8)
Memory corruption while copying packets received from unix clients.
Published: 2025-12-18T05:29:01.171Z
Updated: 2025-12-18T15:01:09.655Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47320 |
not_vulnerable | 2026-06-03 15:01:29.389526 |
Out-of-bounds Write in Audio
HIGH (7.8)
Memory corruption while processing MFC channel configuration during music playback.
Published: 2025-12-18T05:28:59.413Z
Updated: 2025-12-18T15:01:17.744Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27070 |
not_vulnerable | 2026-06-03 15:00:11.241179 |
Out-of-bounds Write in Windows Compute
HIGH (7.8)
Memory corruption while performing encryption and decryption commands.
Published: 2025-11-04T03:19:12.122Z
Updated: 2026-02-26T17:47:32.101Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27066 |
not_vulnerable | 2026-06-03 15:00:11.088850 |
Reachable Assertion in WLAN Firmware
HIGH (7.5)
Transient DOS while processing an ANQP message.
Published: 2025-08-06T07:26:03.160Z
Updated: 2025-08-06T13:36:36.865Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27063 |
not_vulnerable | 2026-06-03 15:00:10.969026 |
Use After Free in Video
HIGH (7.8)
Memory corruption during video playback when video session open fails with time out error.
Published: 2025-12-18T05:28:55.736Z
Updated: 2025-12-18T15:01:32.327Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27062 |
not_vulnerable | 2026-06-03 15:00:10.885138 |
Improper Access Control in Automotive Multimedia
HIGH (7.8)
Memory corruption while handling client exceptions, allowing unauthorized channel access.
Published: 2025-08-06T07:26:00.568Z
Updated: 2025-08-06T15:37:22.461Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27054 |
not_vulnerable | 2026-06-03 15:00:10.521424 |
Out-of-bounds Write in Display
HIGH (7.8)
Memory corruption while processing a malformed license file during reboot.
Published: 2025-10-09T03:18:03.164Z
Updated: 2026-02-26T17:48:07.760Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27053 |
not_vulnerable | 2026-06-03 15:00:10.371614 |
Incorrect Calculation of Buffer Size in HLOS
HIGH (7.8)
Memory corruption during PlayReady APP usecase while processing TA commands.
Published: 2025-10-09T03:18:00.779Z
Updated: 2026-02-26T17:48:08.266Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27041 |
not_vulnerable | 2026-06-03 15:00:09.740780 |
Buffer Over-read in Video
MEDIUM (5.5)
Transient DOS while processing video packets received from video firmware.
Published: 2025-10-09T03:17:55.597Z
Updated: 2025-10-09T14:33:07.421Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27038 |
not_vulnerable | 2026-06-03 15:00:09.612139 |
Use After Free in Graphics
HIGH (7.5)
Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.
Published: 2025-06-03T05:53:06.692Z
Updated: 2026-02-26T18:27:39.591Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21488 |
not_vulnerable | 2026-06-03 14:59:22.389069 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
Published: 2025-09-24T15:33:35.950Z
Updated: 2025-09-25T15:49:08.512Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21487 |
not_vulnerable | 2026-06-03 14:59:22.295620 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
Published: 2025-09-24T15:33:34.551Z
Updated: 2025-09-25T15:49:14.163Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21484 |
not_vulnerable | 2026-06-03 14:59:22.269366 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.
Published: 2025-09-24T15:33:32.879Z
Updated: 2025-09-25T15:49:19.403Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21483 |
not_vulnerable | 2026-06-03 14:59:22.252725 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Data Network Stack & Connectivity
CRITICAL (9.8)
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
Published: 2025-09-24T15:33:31.586Z
Updated: 2026-02-26T17:48:13.763Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21481 |
not_vulnerable | 2026-06-03 14:59:21.947989 |
Buffer Copy Without Checking Size of Input in HLOS
HIGH (7.8)
Memory corruption while performing private key encryption in trusted application.
Published: 2025-09-24T15:33:27.834Z
Updated: 2026-02-26T17:48:14.912Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21480 |
not_vulnerable | 2026-06-03 14:59:21.940692 |
Incorrect Authorization in Graphics Windows
HIGH (8.6)
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
Published: 2025-06-03T05:53:00.920Z
Updated: 2026-02-26T18:27:40.561Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21479 |
not_vulnerable | 2026-06-03 14:59:21.935473 |
Incorrect Authorization in Graphics
HIGH (8.6)
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
Published: 2025-06-03T06:42:42.042Z
Updated: 2026-02-26T18:27:39.157Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21465 |
not_vulnerable | 2026-06-03 14:59:21.735027 |
Out-of-bounds Read in Core
MEDIUM (6.5)
Information disclosure while processing the hash segment in an MBN file.
Published: 2025-08-06T07:25:55.226Z
Updated: 2025-08-06T19:26:20.064Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21464 |
not_vulnerable | 2026-06-03 14:59:21.624106 |
Out-of-bounds Read in Core
MEDIUM (6.5)
Information disclosure while reading data from an image using specified offset and size parameters.
Published: 2025-08-06T07:25:53.752Z
Updated: 2025-08-06T19:25:57.162Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21430 |
not_vulnerable | 2026-06-03 14:59:20.418549 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
Published: 2025-04-07T10:15:58.168Z
Updated: 2025-04-07T15:20:35.291Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21429 |
not_vulnerable | 2026-06-03 14:59:19.978974 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request.
Published: 2025-04-07T10:15:56.542Z
Updated: 2026-02-26T18:28:50.695Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53026 |
not_vulnerable | 2026-06-03 14:57:39.029737 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
Published: 2025-06-03T05:52:57.455Z
Updated: 2025-06-03T15:11:13.353Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53021 |
not_vulnerable | 2026-06-03 14:57:38.854504 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur while processing goodbye RTCP packet from network.
Published: 2025-06-03T05:52:55.940Z
Updated: 2025-06-03T15:10:54.652Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53020 |
not_vulnerable | 2026-06-03 14:57:38.841021 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Published: 2025-06-03T05:52:54.550Z
Updated: 2025-06-03T14:49:32.785Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53015 |
not_vulnerable | 2026-06-03 14:57:38.669918 |
Use After Free in Computer Vision
MEDIUM (6.6)
Memory corruption while processing IOCTL command to handle buffers associated with a session.
Published: 2025-06-03T05:52:48.537Z
Updated: 2025-06-03T13:37:42.828Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49848 |
not_vulnerable | 2026-06-03 14:57:14.253077 |
Use After Free in DSP Service
MEDIUM (6.7)
Memory corruption while processing multiple IOCTL calls from HLOS to DSP.
Published: 2025-04-07T10:15:50.191Z
Updated: 2026-02-26T18:28:52.687Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45552 |
not_vulnerable | 2026-06-03 14:56:57.552074 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.
Published: 2025-04-07T10:15:46.280Z
Updated: 2025-04-07T15:53:03.856Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45551 |
not_vulnerable | 2026-06-03 14:56:57.465306 |
Weak Authentication in HLOS
MEDIUM (6.2)
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
Published: 2025-04-07T10:15:44.780Z
Updated: 2025-04-07T16:49:45.365Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43066 |
not_vulnerable | 2026-06-03 14:56:44.394101 |
Use After Free in HLOS
HIGH (7.8)
Memory corruption while handling file descriptor during listener registration/de-registration.
Published: 2025-04-07T10:15:36.557Z
Updated: 2025-04-07T18:57:53.736Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43065 |
not_vulnerable | 2026-06-03 14:56:44.350289 |
Exposed Dangerous Method or Function in HLOS
HIGH (7.1)
Cryptographic issues while generating an asymmetric key pair for RKP use cases.
Published: 2025-04-07T10:15:35.110Z
Updated: 2025-04-07T15:56:17.559Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43048 |
not_vulnerable | 2026-06-03 14:56:43.597315 |
Stack-based Buffer Overflow in Performance
HIGH (7.8)
Memory corruption when invalid input is passed to invoke GPU Headroom API call.
Published: 2024-12-02T10:18:49.110Z
Updated: 2024-12-03T04:55:36.961Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43046 |
not_vulnerable | 2026-06-03 14:56:43.240876 |
Information Exposure in TZ Secure OS
MEDIUM (5.5)
There may be information disclosure during memory re-allocation in TZ Secure OS.
Published: 2025-04-07T10:15:31.869Z
Updated: 2025-04-07T16:02:40.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38425 |
not_vulnerable | 2026-06-03 14:56:18.220257 |
Improper Authorization in Performance
MEDIUM (6.1)
Information disclosure while sending implicit broadcast containing APP launch information.
Published: 2024-10-07T12:59:00.295Z
Updated: 2024-10-07T13:09:05.945Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38424 |
not_vulnerable | 2026-06-03 14:56:18.200473 |
Use After Free in GPS
HIGH (7.8)
Memory corruption during GNSS HAL process initialization.
Published: 2024-11-04T10:05:02.628Z
Updated: 2024-11-16T04:55:26.866Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38423 |
not_vulnerable | 2026-06-03 14:56:18.127510 |
Buffer Copy Without Checking Size of Input in Graphics Linux
HIGH (7.8)
Memory corruption while processing GPU page table switch.
Published: 2024-11-04T10:05:00.972Z
Updated: 2024-11-04T14:53:37.988Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38422 |
not_vulnerable | 2026-06-03 14:56:18.053658 |
Integer Overflow to Buffer Overflow in Audio
HIGH (7.8)
Memory corruption while processing voice packet with arbitrary data received from ADSP.
Published: 2024-11-04T10:04:59.057Z
Updated: 2024-11-04T14:53:56.837Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38419 |
not_vulnerable | 2026-06-03 14:56:17.820001 |
Use After Free in Automotive GPU
HIGH (7.8)
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
Published: 2024-11-04T10:04:56.066Z
Updated: 2024-11-04T14:54:40.181Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38415 |
not_vulnerable | 2026-06-03 14:56:17.702601 |
Use After Free in Computer Vision
HIGH (7.8)
Memory corruption while handling session errors from firmware.
Published: 2024-11-04T10:04:54.717Z
Updated: 2024-11-04T14:59:57.323Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38399 |
not_vulnerable | 2026-06-03 14:56:17.113361 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption while processing user packets to generate page faults.
Published: 2024-10-07T12:58:59.102Z
Updated: 2024-10-07T13:09:46.180Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33056 |
not_vulnerable | 2026-06-03 14:55:51.471868 |
Buffer Over-read in MProc
HIGH (8.4)
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Published: 2024-12-02T10:18:46.431Z
Updated: 2024-12-03T04:55:35.719Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33049 |
not_vulnerable | 2026-06-03 14:55:50.940185 |
Buffer Over-read in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
Published: 2024-10-07T12:58:50.372Z
Updated: 2024-10-07T13:21:17.867Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33043 |
not_vulnerable | 2026-06-03 14:55:50.686502 |
Buffer Over-read in FM Host
MEDIUM (5.5)
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
Published: 2024-09-02T10:22:36.572Z
Updated: 2024-09-03T13:55:47.186Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33035 |
not_vulnerable | 2026-06-03 14:55:50.347749 |
Integer Overflow or Wraparound in Display
HIGH (8.4)
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
Published: 2024-09-02T10:22:33.582Z
Updated: 2024-09-05T03:56:07.973Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33034 |
not_vulnerable | 2026-06-03 14:55:50.341240 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
Published: 2024-08-05T14:21:49.870Z
Updated: 2024-08-05T14:37:43.199Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33028 |
not_vulnerable | 2026-06-03 14:55:50.246327 |
Use After Free in Automotive Telematics
HIGH (8.4)
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
Published: 2024-08-05T14:21:48.702Z
Updated: 2024-08-05T14:37:12.190Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33023 |
not_vulnerable | 2026-06-03 14:55:50.017900 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
Published: 2024-08-05T14:21:43.449Z
Updated: 2024-08-05T14:42:39.778Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33022 |
not_vulnerable | 2026-06-03 14:55:49.816948 |
Integer Overflow or Wraparound in Automotive GPU
HIGH (8.4)
Memory corruption while allocating memory in HGSL driver.
Published: 2024-08-05T14:21:42.398Z
Updated: 2024-08-05T14:43:56.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33021 |
not_vulnerable | 2026-06-03 14:55:49.806706 |
Use of Uninitialized Variable in Automotive GPU
HIGH (8.4)
Memory corruption while processing IOCTL call to set metainfo.
Published: 2024-08-05T14:21:41.397Z
Updated: 2024-08-05T14:45:22.446Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33016 |
not_vulnerable | 2026-06-03 14:55:49.725270 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Storage
MEDIUM (6.8)
memory corruption when an invalid firehose patch command is invoked.
Published: 2024-09-02T10:22:32.425Z
Updated: 2024-09-03T14:02:35.440Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33015 |
not_vulnerable | 2026-06-03 14:55:49.517561 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
Published: 2024-08-05T14:21:37.096Z
Updated: 2024-08-05T15:31:59.436Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33014 |
not_vulnerable | 2026-06-03 14:55:49.462133 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing ESP IE from beacon/probe response frame.
Published: 2024-08-05T14:21:35.794Z
Updated: 2024-08-05T15:33:16.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33012 |
not_vulnerable | 2026-06-03 14:55:49.186474 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
Published: 2024-08-05T14:21:33.219Z
Updated: 2024-08-05T15:35:49.399Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33011 |
not_vulnerable | 2026-06-03 14:55:49.117537 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
Published: 2024-08-05T14:21:31.845Z
Updated: 2024-08-05T15:38:17.772Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33010 |
not_vulnerable | 2026-06-03 14:55:49.054529 |
Use After Free in WLAN Host
HIGH (7.5)
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
Published: 2024-08-05T14:21:30.704Z
Updated: 2024-08-05T15:38:42.755Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23384 |
not_vulnerable | 2026-06-03 14:55:03.750916 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.
Published: 2024-08-05T14:21:29.441Z
Updated: 2024-08-16T03:59:05.680Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23382 |
not_vulnerable | 2026-06-03 14:55:03.730494 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption while processing graphics kernel driver request to create DMA fence.
Published: 2024-08-05T14:21:27.359Z
Updated: 2024-08-15T03:55:45.836Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23380 |
not_vulnerable | 2026-06-03 14:55:03.715189 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption while handling user packets during VBO bind operation.
Published: 2024-07-01T14:17:21.973Z
Updated: 2024-08-01T23:06:24.219Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23373 |
not_vulnerable | 2026-06-03 14:55:03.588803 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Published: 2024-07-01T14:17:20.786Z
Updated: 2024-08-01T23:06:24.305Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23372 |
not_vulnerable | 2026-06-03 14:55:03.572706 |
Integer Overflow or Wraparound in Graphics
HIGH (8.4)
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.
Published: 2024-07-01T14:17:19.388Z
Updated: 2024-08-01T23:06:24.224Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23368 |
not_vulnerable | 2026-06-03 14:55:03.501845 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
HIGH (7.8)
Memory corruption when allocating and accessing an entry in an SMEM partition.
Published: 2024-07-01T14:17:17.981Z
Updated: 2024-08-01T23:06:24.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23362 |
not_vulnerable | 2026-06-03 14:55:03.168232 |
Improper Input Validation in Trusted Execution Environment
HIGH (7.1)
Cryptographic issue while parsing RSA keys in COBR format.
Published: 2024-09-02T10:22:29.332Z
Updated: 2024-09-05T03:56:03.375Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23357 |
not_vulnerable | 2026-06-03 14:55:02.987633 |
NULL Pointer Dereference in HLOS
MEDIUM (6.2)
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
Published: 2024-08-05T14:21:25.013Z
Updated: 2024-08-05T15:17:20.073Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23356 |
not_vulnerable | 2026-06-03 14:55:02.908450 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
HIGH (7.8)
Memory corruption during session sign renewal request calls in HLOS.
Published: 2024-08-05T14:21:23.701Z
Updated: 2024-08-15T03:55:43.129Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23355 |
not_vulnerable | 2026-06-03 14:55:02.828889 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Automotive
HIGH (7.8)
Memory corruption when keymaster operation imports a shared key.
Published: 2024-08-05T14:21:22.396Z
Updated: 2024-08-15T03:55:41.211Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23353 |
not_vulnerable | 2026-06-03 14:55:02.684503 |
Buffer Over-read in Multi Mode Call Processor
HIGH (7.5)
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
Published: 2024-08-05T14:21:21.075Z
Updated: 2024-08-05T15:14:49.239Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21469 |
not_vulnerable | 2026-06-03 14:54:49.051426 |
Permissions, Privileges, and Access Control issues in TZ Secure OS
HIGH (7.3)
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
Published: 2024-07-01T14:17:15.436Z
Updated: 2024-08-01T22:20:40.597Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21465 |
not_vulnerable | 2026-06-03 14:54:48.778525 |
Buffer Over-read in Trusted Execution Environment
HIGH (7.8)
Memory corruption while processing key blob passed by the user.
Published: 2024-07-01T14:17:12.663Z
Updated: 2024-08-01T22:20:40.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21462 |
not_vulnerable | 2026-06-03 14:54:48.613901 |
Buffer Over-read in TZ Secure OS
HIGH (7.1)
Transient DOS while loading the TA ELF file.
Published: 2024-07-01T14:17:11.022Z
Updated: 2024-08-01T22:20:40.868Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21461 |
not_vulnerable | 2026-06-03 14:54:48.464792 |
Double Free in HLOS
HIGH (8.4)
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Published: 2024-07-01T14:17:09.366Z
Updated: 2024-08-01T22:20:40.630Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21455 |
not_vulnerable | 2026-06-03 14:54:47.822185 |
Untrusted Pointer Dereference in DSP Service
HIGH (7.8)
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.
Published: 2024-10-07T12:58:42.341Z
Updated: 2024-10-07T13:19:44.091Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43536 |
not_vulnerable | 2026-06-03 14:53:02.941030 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS while parse fils IE with length equal to 1.
Published: 2024-02-06T05:47:33.289Z
Updated: 2024-08-02T19:44:43.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43533 |
not_vulnerable | 2026-06-03 14:53:02.838811 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.
Published: 2024-02-06T05:47:28.736Z
Updated: 2025-05-15T19:44:50.713Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43522 |
not_vulnerable | 2026-06-03 14:53:02.516460 |
NULL Pointer Dereference in WLAN Firmware
HIGH (7.5)
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
Published: 2024-02-06T05:47:24.174Z
Updated: 2024-08-21T20:34:17.830Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43519 |
not_vulnerable | 2026-06-03 14:53:02.328802 |
Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Video
HIGH (7.3)
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
Published: 2024-02-06T05:47:21.253Z
Updated: 2024-08-02T19:44:42.886Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43518 |
not_vulnerable | 2026-06-03 14:53:02.318586 |
Untrusted Pointer Dereference in Video
HIGH (7.3)
Memory corruption in video while parsing invalid mp2 clip.
Published: 2024-02-06T05:47:19.935Z
Updated: 2024-08-02T19:44:42.706Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43514 |
not_vulnerable | 2026-06-03 14:53:02.281520 |
Use After Free in DSP Services
HIGH (8.4)
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
Published: 2024-01-02T05:38:56.273Z
Updated: 2024-10-01T21:05:37.135Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43513 |
not_vulnerable | 2026-06-03 14:53:02.242515 |
Use of Out-of-range Pointer Offset in PCIe
HIGH (7.8)
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
Published: 2024-02-06T05:47:15.705Z
Updated: 2025-06-16T18:11:12.210Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43511 |
not_vulnerable | 2026-06-03 14:53:02.043247 |
Loop with Unreachable Exit Condition (Infinite Loop) in WLAN Firmware
HIGH (7.5)
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
Published: 2024-01-02T05:38:53.528Z
Updated: 2025-06-16T19:53:38.503Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33120 |
not_vulnerable | 2026-06-03 14:52:12.724227 |
Use After Free in Audio
HIGH (7.8)
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
Published: 2024-01-02T05:38:51.959Z
Updated: 2025-06-03T14:46:01.965Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33118 |
not_vulnerable | 2026-06-03 14:52:12.545709 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.
Published: 2024-01-02T05:38:50.464Z
Updated: 2025-06-03T14:46:08.302Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33117 |
not_vulnerable | 2026-06-03 14:52:12.536309 |
Use After Free in Audio
HIGH (7.8)
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
Published: 2024-01-02T05:38:49.188Z
Updated: 2025-06-18T14:53:28.329Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33114 |
not_vulnerable | 2026-06-03 14:52:12.386612 |
Use after free in Neural Processing Unit
HIGH (8.4)
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
Published: 2024-01-02T05:38:46.886Z
Updated: 2024-11-14T19:23:48.673Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33113 |
not_vulnerable | 2026-06-03 14:52:12.363693 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Kernel
HIGH (8.4)
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
Published: 2024-01-02T05:38:45.672Z
Updated: 2025-06-17T19:55:25.376Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33112 |
not_vulnerable | 2026-06-03 14:52:12.353080 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
Published: 2024-01-02T05:38:44.471Z
Updated: 2024-10-01T21:18:13.161Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33110 |
not_vulnerable | 2026-06-03 14:52:12.257650 |
Use of Out-of-range Pointer Offset in Audio
HIGH (7.8)
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.
Published: 2024-01-02T05:38:43.225Z
Updated: 2025-05-21T14:09:00.711Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33109 |
not_vulnerable | 2026-06-03 14:52:12.211158 |
NULL Pointer Dereference in WLAN Firmware
HIGH (7.5)
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
Published: 2024-01-02T05:38:41.562Z
Updated: 2025-06-16T18:35:57.084Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33107 |
not_vulnerable | 2026-06-03 14:52:12.082758 |
Integer Overflow or Wraparound in Graphics Linux
HIGH (8.4)
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Published: 2023-12-05T03:04:29.196Z
Updated: 2025-10-21T23:05:30.590Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33106 |
not_vulnerable | 2026-06-03 14:52:11.911673 |
Use of Out-of-range Pointer Offset in Graphics
HIGH (8.4)
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
Published: 2023-12-05T03:04:27.889Z
Updated: 2025-10-21T23:05:30.898Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33094 |
not_vulnerable | 2026-06-03 14:52:04.638248 |
Use After Free in Linux Graphics
HIGH (8.4)
Memory corruption while running VK synchronization with KASAN enabled.
Published: 2024-01-02T05:38:38.853Z
Updated: 2025-04-17T18:49:26.434Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33092 |
not_vulnerable | 2026-06-03 14:52:04.629909 |
Buffer Copy Without Checking Size of Input in Bluetooth HOST
HIGH (8.4)
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
Published: 2023-12-05T03:04:24.232Z
Updated: 2025-05-29T13:30:41.840Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33088 |
not_vulnerable | 2026-06-03 14:52:04.420370 |
NULL pointer dereference in WLAN Firmware
HIGH (8.4)
Memory corruption when processing cmd parameters while parsing vdev.
Published: 2023-12-05T03:04:21.594Z
Updated: 2024-08-02T15:32:46.624Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33085 |
not_vulnerable | 2026-06-03 14:52:04.382229 |
Buffer Copy Without Checking Size of Input (Classic Buffer Overflow) in Wearables
HIGH (7.8)
Memory corruption in wearables while processing data from AON.
Published: 2024-01-02T05:38:37.667Z
Updated: 2025-06-03T14:46:18.862Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33072 |
not_vulnerable | 2026-06-03 14:52:04.007303 |
Buffer copy without checking size of Input in Core
CRITICAL (9.3)
Memory corruption in Core while processing control functions.
Published: 2024-02-06T05:47:11.221Z
Updated: 2025-05-15T19:45:11.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33062 |
not_vulnerable | 2026-06-03 14:52:03.411438 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware while parsing a BTM request.
Published: 2024-01-02T05:38:36.201Z
Updated: 2025-06-17T20:19:53.666Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33040 |
not_vulnerable | 2026-06-03 14:52:02.702144 |
Buffer Over-read in Data Modem
HIGH (7.5)
Transient DOS in Data Modem during DTLS handshake.
Published: 2024-01-02T05:38:34.624Z
Updated: 2025-06-03T14:46:23.285Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33038 |
not_vulnerable | 2026-06-03 14:52:02.690352 |
Integer Overflow or Wraparound in Radio Interface Layer
MEDIUM (6.7)
Memory corruption while receiving a message in Bus Socket Transport Server.
Published: 2024-01-02T05:38:33.322Z
Updated: 2024-11-14T19:30:38.544Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33037 |
not_vulnerable | 2026-06-03 14:52:02.682488 |
Cryptographic Issues in Automotive
HIGH (7.1)
Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.
Published: 2024-01-02T05:38:32.164Z
Updated: 2025-06-17T20:19:03.574Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33033 |
not_vulnerable | 2026-06-03 14:52:02.652036 |
Use of Out-of-range Pointer Offset in Audio
HIGH (8.4)
Memory corruption in Audio during playback with speaker protection.
Published: 2024-01-02T05:38:29.493Z
Updated: 2025-05-21T14:06:28.914Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33030 |
not_vulnerable | 2026-06-03 14:52:02.487249 |
Buffer Copy without Checking Size of Input in HLOS
CRITICAL (9.3)
Memory corruption in HLOS while running playready use-case.
Published: 2024-01-02T05:38:26.512Z
Updated: 2025-06-03T14:46:27.869Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33027 |
not_vulnerable | 2026-06-03 14:52:02.310865 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware while parsing rsn ies.
Published: 2023-10-03T05:00:40.127Z
Updated: 2024-08-02T15:32:46.565Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33025 |
not_vulnerable | 2026-06-03 14:52:02.143051 |
Buffer Copy without Checking Size of Input in Data Modem
CRITICAL (9.8)
Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.
Published: 2024-01-02T05:38:25.107Z
Updated: 2025-04-17T18:51:19.706Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28588 |
not_vulnerable | 2026-06-03 14:51:12.991209 |
Integer Overflow or Wraparound in Bluetooth Host
HIGH (7.5)
Transient DOS in Bluetooth Host while rfc slot allocation.
Published: 2023-12-05T03:03:58.097Z
Updated: 2024-08-02T13:43:23.180Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28587 |
not_vulnerable | 2026-06-03 14:51:12.978005 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in BT Controller
HIGH (7.8)
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
Published: 2023-12-05T03:03:56.759Z
Updated: 2024-08-02T13:43:23.596Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28586 |
not_vulnerable | 2026-06-03 14:51:12.845742 |
Improper Restriction of Operation within the Bounds of a Memory Buffer in TZ Secure OS
MEDIUM (6)
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
Published: 2023-12-05T03:03:55.223Z
Updated: 2024-12-02T17:11:28.311Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28585 |
not_vulnerable | 2026-06-03 14:51:12.826489 |
Integer Overflow to Buffer Overflow in TZ Secure OS
HIGH (8.2)
Memory corruption while loading an ELF segment in TEE Kernel.
Published: 2023-12-05T03:03:53.662Z
Updated: 2026-02-25T16:51:08.675Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28569 |
not_vulnerable | 2026-06-03 14:51:12.335287 |
Buffer Over-read in WLAN HAL
MEDIUM (6.1)
Information disclosure in WLAN HAL while handling command through WMI interfaces.
Published: 2023-11-07T05:26:42.279Z
Updated: 2024-08-02T13:43:22.620Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28568 |
not_vulnerable | 2026-06-03 14:51:12.321149 |
Buffer Over-read in WLAN HAL
MEDIUM (6.1)
Information disclosure in WLAN HAL when reception status handler is called.
Published: 2023-11-07T05:26:40.000Z
Updated: 2024-08-02T13:43:23.667Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28566 |
not_vulnerable | 2026-06-03 14:51:12.206112 |
Buffer Over-read in WLAN HAL
MEDIUM (6.1)
Information disclosure in WLAN HAL while handling the WMI state info command.
Published: 2023-11-07T05:26:38.950Z
Updated: 2024-08-02T13:43:22.544Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28563 |
not_vulnerable | 2026-06-03 14:51:11.857905 |
Buffer Over-read in IOE Firmware
MEDIUM (6.1)
Information disclosure in IOE Firmware while handling WMI command.
Published: 2023-11-07T05:26:37.887Z
Updated: 2024-08-02T13:43:23.473Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28559 |
not_vulnerable | 2026-06-03 14:51:11.654488 |
Buffer Copy Without Checking Size of Input in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.
Published: 2023-09-05T06:24:15.784Z
Updated: 2025-02-27T21:02:10.588Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28558 |
not_vulnerable | 2026-06-03 14:51:11.572757 |
Improper Validation of Array Index in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN handler while processing PhyID in Tx status handler.
Published: 2023-09-05T06:24:14.024Z
Updated: 2024-08-02T13:43:23.150Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28557 |
not_vulnerable | 2026-06-03 14:51:11.540950 |
Improper Validation of Array Index in WLAN HAL
HIGH (7.8)
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
Published: 2023-09-05T06:24:12.673Z
Updated: 2024-08-02T13:43:23.051Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28556 |
not_vulnerable | 2026-06-03 14:51:11.418962 |
Improper Authorization in HLOS
HIGH (7.1)
Cryptographic issue in HLOS during key management.
Published: 2023-11-07T05:26:36.631Z
Updated: 2024-08-02T13:43:22.844Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28551 |
not_vulnerable | 2026-06-03 14:51:11.230775 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in UTILS
HIGH (7.8)
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
Published: 2023-12-05T03:03:50.075Z
Updated: 2024-08-02T13:43:23.278Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28550 |
not_vulnerable | 2026-06-03 14:51:11.183253 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in MPP Performance
HIGH (7.8)
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
Published: 2023-12-05T03:03:48.538Z
Updated: 2024-08-02T13:43:22.782Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28546 |
not_vulnerable | 2026-06-03 14:51:10.718352 |
Buffer Copy Without Checking Size of Input in SPS Applications
HIGH (7.8)
Memory Corruption in SPS Application while exporting public key in sorter TA.
Published: 2023-12-05T03:03:46.993Z
Updated: 2026-02-25T16:51:09.392Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28545 |
not_vulnerable | 2026-06-03 14:51:10.587369 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in TZ Secure OS
HIGH (8.2)
Memory corruption in TZ Secure OS while loading an app ELF.
Published: 2023-11-07T05:26:32.849Z
Updated: 2024-08-02T13:43:22.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28544 |
not_vulnerable | 2026-06-03 14:51:10.494326 |
Buffer Copy without Checking the Size of Input in WLAN Firmware
HIGH (7.8)
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.
Published: 2023-09-05T06:24:08.152Z
Updated: 2025-02-27T21:02:34.781Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24852 |
not_vulnerable | 2026-06-03 14:49:31.407861 |
Improper Authentication in Core
HIGH (8.4)
Memory Corruption in Core due to secure memory access by user while loading modem image.
Published: 2023-11-07T05:26:31.358Z
Updated: 2024-08-02T11:03:19.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24850 |
not_vulnerable | 2026-06-03 14:49:31.196513 |
Improper Validation of Array Index in HLOS
HIGH (7.8)
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
Published: 2023-10-03T05:00:31.983Z
Updated: 2025-02-27T20:48:09.352Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24849 |
not_vulnerable | 2026-06-03 14:49:31.096129 |
Buffer Over-read in Data Modem
HIGH (8.2)
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
Published: 2023-10-03T05:00:30.792Z
Updated: 2024-08-02T11:03:19.341Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24848 |
not_vulnerable | 2026-06-03 14:49:31.039789 |
Buffer Over-read in Data Modem
HIGH (8.2)
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
Published: 2023-10-03T05:00:29.170Z
Updated: 2024-08-02T11:03:19.272Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24847 |
not_vulnerable | 2026-06-03 14:49:30.921661 |
NULL pointer Dereference in Modem
HIGH (7.5)
Transient DOS in Modem while allocating DSM items.
Published: 2023-10-03T05:00:27.519Z
Updated: 2024-08-02T11:03:19.321Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-22388 |
not_vulnerable | 2026-06-03 14:49:18.504749 |
Use of Out-of-range Pointer Offset in Multi-mode Call Processor
CRITICAL (9.8)
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Published: 2023-11-07T05:26:29.886Z
Updated: 2025-12-16T18:23:25.695Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-22385 |
not_vulnerable | 2026-06-03 14:49:18.303539 |
Buffer Over-read in Data Modem
HIGH (8.2)
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
Published: 2023-10-03T05:00:23.604Z
Updated: 2024-08-02T10:07:06.546Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21670 |
not_vulnerable | 2026-06-03 14:49:15.258205 |
Improper Access control in GPU Subsystem
HIGH (7.8)
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
Published: 2023-06-06T07:39:21.348Z
Updated: 2025-01-07T19:33:15.172Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.