📦 Snapdragon 8 Gen 3 Mobile Firmware
by Qualcomm
🔍 What is Snapdragon 8 Gen 3 Mobile Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows attackers to intercept or manipulate data during downloads due to insecure connection methods. It affects systems using Qualcomm components with vulnerable firmware versions....
This vulnerability allows remote attackers to execute arbitrary code or cause denial of service by sending specially crafted ML IE frames to affected Qualcomm devices. It affects systems using Qualcom...
CVE-2023-28578 is a memory corruption vulnerability in Qualcomm Core Services that occurs when removing a single event listener. This allows attackers to potentially execute arbitrary code or cause de...
A cryptographic vulnerability in Qualcomm's Trusted Zone when triggered by the High-Level Operating System (HLOS) providing incorrect input. This allows potential cryptographic bypass or manipulation ...
This CVE describes a use-after-free vulnerability in Qualcomm GPU memory management where improper pointer handling during buffer deallocation can cause memory corruption. Attackers could exploit this...
This vulnerability allows memory corruption in the diag component when processing data packets from Unix clients. Attackers could potentially execute arbitrary code or cause denial of service on affec...
This CVE describes a use-after-free vulnerability (CWE-416) in Qualcomm sub-system restart processes that can lead to memory corruption. Attackers could potentially exploit this to execute arbitrary c...
This vulnerability allows memory corruption in Qualcomm video firmware when processing manipulated payloads. Attackers could potentially execute arbitrary code or cause denial of service. Affects devi...
This vulnerability allows a denial-of-service (DoS) condition in Qualcomm wireless LAN (WLAN) chipsets when processing vendor-specific information elements in BTM (BSS Transition Management) request f...
This vulnerability allows information disclosure when a User Equipment (UE) device receives RTP packets from the network. It affects mobile devices with Qualcomm chipsets that process RTP traffic. Att...
This cryptographic vulnerability in Qualcomm chipsets allows improper handling of cryptographic API calls, potentially leading to key corruption or IV reuse. This affects devices using vulnerable Qual...
This vulnerability allows memory corruption when retrieving CBOR data from a Trusted Application (TA) in Qualcomm components. Attackers could potentially execute arbitrary code or cause denial of serv...
This vulnerability allows memory corruption in Qualcomm firmware drivers when processing responses. Attackers could potentially execute arbitrary code or cause denial of service on affected devices. T...
This vulnerability allows attackers to cause a Denial of Service (DoS) condition by sending specially crafted ML IE (Management Information Element) packets during per-STA profile parsing. It affects ...
This vulnerability involves memory corruption during the FRS UDS generation process in Qualcomm components, potentially allowing attackers to execute arbitrary code or cause denial of service. It affe...
This vulnerability allows attackers to cause a denial-of-service condition in Qualcomm devices by sending specially crafted registration acceptance OTA messages with incorrect ciphering key data. It a...
This CVE describes a memory corruption vulnerability in Qualcomm's secure file reading functionality. Attackers could exploit this to execute arbitrary code or cause denial of service. The vulnerabili...
This CVE describes a memory corruption vulnerability in Qualcomm components where incorrect API restrictions allow memory mapping into protected VM address space. Attackers could exploit this to execu...
This vulnerability allows memory corruption in Qualcomm camera components when an invalid CID (Camera ID) is used. Attackers could potentially execute arbitrary code or cause denial of service. This a...
This vulnerability involves memory corruption during camera sensor power-up or power-down sequences on Qualcomm devices. It could allow attackers to execute arbitrary code or cause denial of service. ...
This vulnerability allows attackers to read sensitive memory contents when parsing malformed OCI (Oracle Call Interface) information elements with invalid length fields. It affects systems using Qualc...
This vulnerability allows memory corruption during Wi-Fi management frame processing due to a mismatch in T2LM (Target Wake Time Link Management) information elements. Attackers within Wi-Fi range cou...
This vulnerability allows memory corruption through improper input validation when processing IOCTL calls related to GPU AHB bus error handling. Attackers could potentially execute arbitrary code or c...
This CVE describes a memory corruption vulnerability in the Camera kernel driver when validating the number of devices. Successful exploitation could allow attackers to execute arbitrary code or cause...
This vulnerability allows memory corruption when userspace makes a compat IOCTL call followed by a normal IOCTL call, potentially leading to privilege escalation or denial of service. It affects Qualc...
This vulnerability allows memory corruption when configuring a hypervisor-based input virtual device, potentially enabling arbitrary code execution or system compromise. It affects systems using Qualc...
This vulnerability in Qualcomm modems allows a transient denial-of-service (DoS) condition when the device receives a registration accept message with incorrect ciphering key data during over-the-air ...
This CVE describes a use-after-free vulnerability in Qualcomm components where memory corruption can occur when process-specific maps are improperly handled in global lists. If exploited, it could all...
This vulnerability in Qualcomm Wi-Fi drivers allows attackers to cause a denial-of-service (DoS) condition by sending specially crafted packets. The driver fails to properly validate the length of per...
This CVE describes a memory corruption vulnerability in Qualcomm's IPA (IP Accelerator) statistics processing when no active clients are registered. Successful exploitation could allow attackers to ex...
This vulnerability allows attackers to cause memory corruption through a specific IOCTL call for group information retrieval. Successful exploitation could lead to arbitrary code execution or system c...
This vulnerability allows memory corruption during the handshake process between Primary and Trusted Virtual Machines in Qualcomm platforms. Attackers could potentially execute arbitrary code or cause...
This vulnerability allows memory corruption when two threads simultaneously map and unmap a single node in Qualcomm components. Successful exploitation could lead to arbitrary code execution or system...
This vulnerability allows an attacker to cause a denial-of-service (DoS) condition by sending specially crafted beacon or probe response frames to affected Wi-Fi devices. The issue occurs during parsi...
This vulnerability allows memory corruption when processing audio files with large input buffers, potentially leading to arbitrary code execution. It affects Qualcomm audio processing components acros...
This vulnerability allows memory corruption during cryptographic key pair generation when verifying serialized headers. It affects systems using Qualcomm components that handle key generation, potenti...
This vulnerability allows attackers to cause a denial-of-service condition in IKEv2 implementations by sending malformed fragment packets. It affects systems using Qualcomm's IKEv2 implementation, pot...
This vulnerability allows a denial-of-service (DoS) attack on 5G NR (New Radio) devices by sending specially crafted SMS messages with non-standard container sizes. It affects mobile devices using Qua...
This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm devices by sending specially crafted DL NAS TRANSPORT messages with zero payload length. It affects mobile ...
This CVE describes a memory corruption vulnerability in Qualcomm's trusted execution environment when processing buffer initialization for certain report types. Attackers could potentially execute arb...
This CVE describes a memory corruption vulnerability in the SPS Application's sorter Trusted Application (TA) when requesting public keys. Successful exploitation could allow attackers to execute arbi...
This vulnerability in Qualcomm chipsets allows a denial-of-service attack when processing CAG (Closed Access Group) information elements from network messages. It affects mobile devices and infrastruc...
This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm WLAN systems by sending a large number of malformed authentication frames with invalid transaction sequence...
This CVE describes a memory corruption vulnerability in the mailbox component of Qualcomm automotive systems. Attackers could potentially execute arbitrary code or cause denial of service by exploitin...
This CVE describes a memory corruption vulnerability in Qualcomm components where improper validation of user-space buffers during IOCTL calls allows attackers to corrupt kernel memory. It affects dev...
This vulnerability allows memory corruption while processing frame packets in Qualcomm components, potentially enabling attackers to execute arbitrary code or cause denial of service. It affects devic...
This vulnerability allows attackers to cause memory corruption by making specific IOCTL calls to unmap DMA buffers in Qualcomm components. It affects systems using vulnerable Qualcomm chipsets and dri...