This page lists publicly disclosed CVE vulnerabilities affecting qualcomm sdm845_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-33080 | Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | [email protected] | 7.5 | 0.34% | 2023-12-04 | 2026-06-17 |
| CVE-2023-33070 | Transient DOS in Automotive OS due to improper authentication to the secure IO calls. | [email protected] | 7.1 | 0.05% | 2023-12-04 | 2026-06-17 |
| CVE-2023-33063 KEV | Memory corruption in DSP Services during a remote call from HLOS to DSP. | [email protected] | 7.8 | 0.70% | 2023-12-04 | 2026-06-17 |
| CVE-2023-33054 | Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. | [email protected] | 9.1 | 0.36% | 2023-12-04 | 2026-06-17 |
| CVE-2023-33018 | Memory corruption while using the UIM diag command to get the operators name. | [email protected] | 7.8 | 0.06% | 2023-12-04 | 2026-06-17 |
| CVE-2023-33017 | Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. | [email protected] | 7.8 | 0.16% | 2023-12-04 | 2026-06-17 |
| CVE-2023-33059 | Memory corruption in Audio while processing the VOC packet data from ADSP. | [email protected] | 7.8 | 0.06% | 2023-11-07 | 2026-06-17 |
| CVE-2023-33031 | Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer. | [email protected] | 7.8 | 0.06% | 2023-11-07 | 2026-06-17 |
| CVE-2023-28560 | Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | [email protected] | 7.8 | 0.11% | 2023-09-05 | 2026-06-17 |
| CVE-2023-28537 | Memory corruption while allocating memory in COmxApeDec module in Audio. | [email protected] | 8.4 | 0.05% | 2023-08-08 | 2026-06-17 |
| CVE-2023-21670 | Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode. | [email protected] | 7.8 | 0.06% | 2023-06-06 | 2026-06-17 |
| CVE-2022-40521 | Transient DOS due to improper authorization in Modem | [email protected] | 7.5 | 0.35% | 2023-06-06 | 2026-06-17 |
| CVE-2022-40507 | Memory corruption due to double free in Core while mapping HLOS address to the list. | [email protected] | 8.4 | 1.31% | 2023-06-06 | 2026-06-17 |
| CVE-2022-33307 | Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. | [email protected] | 8.4 | 0.06% | 2023-06-06 | 2026-06-17 |
| CVE-2022-33264 | Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | [email protected] | 7.9 | 0.09% | 2023-06-06 | 2026-06-17 |
| CVE-2022-40504 | Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | [email protected] | 7.5 | 0.38% | 2023-05-02 | 2026-06-17 |
| CVE-2022-33273 | Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation. | [email protected] | 7.3 | 0.12% | 2023-05-02 | 2026-06-17 |
| CVE-2023-21666 | Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. | [email protected] | 8.4 | 0.18% | 2023-05-02 | 2026-06-17 |
| CVE-2023-21665 | Memory corruption in Graphics while importing a file. | [email protected] | 8.4 | 0.18% | 2023-05-02 | 2026-06-17 |
| CVE-2022-40532 | Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. | [email protected] | 8.4 | 0.05% | 2023-04-13 | 2026-06-17 |