Qualcomm SM6370 FIRMWARE

CPE Details

Qualcomm SM6370 FIRMWARE
qualcomm
sm6370_firmware
-
2024-12-19
14h04 +00:00
2024-12-19
14h04 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:qualcomm:sm6370_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

qualcomm

Product

sm6370_firmware

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-21468 2025-05-06 08h32 +00:00 Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
7.8
High
CVE-2025-21453 2025-05-06 08h32 +00:00 Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
7.8
High
CVE-2024-49835 2025-05-06 08h32 +00:00 Memory corruption while reading secure file.
7.8
High
CVE-2024-53027 2025-03-03 10h07 +00:00 Transient DOS may occur while processing the country IE.
7.5
High
CVE-2024-53024 2025-03-03 10h07 +00:00 Memory corruption in display driver while detaching a device.
7.8
High
CVE-2024-53014 2025-03-03 10h07 +00:00 Memory corruption may occur while validating ports and channels in Audio driver.
7.8
High
CVE-2024-43051 2025-03-03 10h07 +00:00 Information disclosure while deriving keys for a session for any Widevine use case.
5.5
Medium
CVE-2024-49834 2025-02-03 16h51 +00:00 Memory corruption while power-up or power-down sequence of the camera sensor.
7.8
High
CVE-2024-33056 2024-12-02 10h18 +00:00 Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
8.4
High
CVE-2024-38423 2024-11-04 10h05 +00:00 Memory corruption while processing GPU page table switch.
7.8
High
CVE-2024-38422 2024-11-04 10h04 +00:00 Memory corruption while processing voice packet with arbitrary data received from ADSP.
7.8
High
CVE-2024-38415 2024-11-04 10h04 +00:00 Memory corruption while handling session errors from firmware.
7.8
High
CVE-2024-38408 2024-11-04 10h04 +00:00 Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
9.1
Critical
CVE-2024-23385 2024-11-04 10h04 +00:00 Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
7.5
High
CVE-2024-38402 2024-09-02 10h22 +00:00 Memory corruption while processing IOCTL call for getting group info.
7.8
High
CVE-2024-33060 2024-09-02 10h22 +00:00 Memory corruption when two threads try to map and unmap a single node simultaneously.
8.4
High
CVE-2024-33051 2024-09-02 10h22 +00:00 Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
7.5
High
CVE-2024-33050 2024-09-02 10h22 +00:00 Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
7.5
High
CVE-2024-33045 2024-09-02 10h22 +00:00 Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
8.4
High
CVE-2024-33023 2024-08-05 14h21 +00:00 Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
8.4
High
CVE-2024-33014 2024-08-05 14h21 +00:00 Transient DOS while parsing ESP IE from beacon/probe response frame.
7.5
High
CVE-2024-33012 2024-08-05 14h21 +00:00 Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
7.5
High
CVE-2024-33011 2024-08-05 14h21 +00:00 Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
7.5
High
CVE-2024-33010 2024-08-05 14h21 +00:00 Transient DOS while parsing fragments of MBSSID IE from beacon frame.
7.5
High
CVE-2024-23357 2024-08-05 14h21 +00:00 Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
6.2
Medium
CVE-2024-23356 2024-08-05 14h21 +00:00 Memory corruption during session sign renewal request calls in HLOS.
7.8
High
CVE-2024-23373 2024-07-01 14h17 +00:00 Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
8.4
High
CVE-2024-23368 2024-07-01 14h17 +00:00 Memory corruption when allocating and accessing an entry in an SMEM partition.
7.8
High
CVE-2024-21469 2024-07-01 14h17 +00:00 Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
7.8
High
CVE-2024-21465 2024-07-01 14h17 +00:00 Memory corruption while processing key blob passed by the user.
7.8
High
CVE-2024-21462 2024-07-01 14h17 +00:00 Transient DOS while loading the TA ELF file.
7.1
High
CVE-2024-21461 2024-07-01 14h17 +00:00 Memory corruption while performing finish HMAC operation when context is freed by keymaster.
8.4
High
CVE-2024-21475 2024-05-06 14h32 +00:00 Memory corruption when the payload received from firmware is not as per the expected protocol size.
7.8
High
CVE-2024-21471 2024-05-06 14h32 +00:00 Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
8.4
High
CVE-2024-21468 2024-04-01 15h06 +00:00 Memory corruption when there is failed unmap operation in GPU.
8.4
High
CVE-2023-33023 2024-04-01 15h05 +00:00 Memory corruption while processing finish_sign command to pass a rsp buffer.
8.4
High
CVE-2023-28547 2024-04-01 15h05 +00:00 Memory corruption in SPS Application while requesting for public key in sorter TA.
8.4
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.