This page lists publicly disclosed CVE vulnerabilities affecting qualcomm sdm660_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-11076 | On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder. | [email protected] | 9.8 | 0.28% | 2024-11-26 | 2025-01-09 |
| CVE-2023-33080 | Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | [email protected] | 7.5 | 0.19% | 2023-12-05 | 2025-08-11 |
| CVE-2023-33070 | Transient DOS in Automotive OS due to improper authentication to the secure IO calls. | [email protected] | 7.1 | 0.05% | 2023-12-05 | 2025-08-11 |
| CVE-2023-33063 KEV | Memory corruption in DSP Services during a remote call from HLOS to DSP. | [email protected] | 7.8 | 0.44% | 2023-12-05 | 2025-10-27 |
| CVE-2023-33054 | Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. | [email protected] | 9.1 | 0.13% | 2023-12-05 | 2025-08-11 |
| CVE-2023-33018 | Memory corruption while using the UIM diag command to get the operators name. | [email protected] | 7.8 | 0.06% | 2023-12-05 | 2025-08-11 |
| CVE-2023-33059 | Memory corruption in Audio while processing the VOC packet data from ADSP. | [email protected] | 7.8 | 0.06% | 2023-11-07 | 2025-08-11 |
| CVE-2023-33031 | Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer. | [email protected] | 7.8 | 0.06% | 2023-11-07 | 2025-08-11 |
| CVE-2022-33275 | Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. | [email protected] | 8.4 | 0.04% | 2023-09-05 | 2024-11-21 |
| CVE-2023-21670 | Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode. | [email protected] | 7.8 | 0.06% | 2023-06-06 | 2024-11-21 |
| CVE-2023-21661 | Transient DOS while parsing WLAN beacon or probe-response frame. | [email protected] | 7.5 | 0.16% | 2023-06-06 | 2024-11-21 |
| CVE-2023-21659 | Transient DOS in WLAN Firmware while processing frames with missing header fields. | [email protected] | 7.5 | 0.15% | 2023-06-06 | 2024-11-21 |
| CVE-2023-21657 | Memoru corruption in Audio when ADSP sends input during record use case. | [email protected] | 7.8 | 0.05% | 2023-06-06 | 2024-11-21 |
| CVE-2023-21628 | Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. | [email protected] | 8.4 | 0.05% | 2023-06-06 | 2024-11-21 |
| CVE-2022-40521 | Transient DOS due to improper authorization in Modem | [email protected] | 7.5 | 0.17% | 2023-06-06 | 2024-11-21 |
| CVE-2022-40507 | Memory corruption due to double free in Core while mapping HLOS address to the list. | [email protected] | 8.4 | 2.63% | 2023-06-06 | 2024-11-21 |
| CVE-2022-33264 | Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | [email protected] | 7.9 | 0.09% | 2023-06-06 | 2024-11-21 |
| CVE-2022-22076 | information disclosure due to cryptographic issue in Core during RPMB read request. | [email protected] | 7.1 | 0.05% | 2023-06-06 | 2024-11-21 |
| CVE-2022-40504 | Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | [email protected] | 7.5 | 0.26% | 2023-05-02 | 2024-11-21 |
| CVE-2023-21666 | Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. | [email protected] | 8.4 | 0.06% | 2023-05-02 | 2024-11-21 |