📦 Snapdragon W5\+ Gen 1 Wearable Firmware
by Qualcomm
🔍 What is Snapdragon W5\+ Gen 1 Wearable Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows attackers to intercept or manipulate data during downloads due to insecure connection methods. It affects systems using Qualcomm components with vulnerable firmware versions....
This vulnerability allows a rogue LTE base station to bypass authentication during network attachment, enabling man-in-the-middle attacks. It affects mobile devices with Qualcomm chipsets that handle ...
CVE-2023-28578 is a memory corruption vulnerability in Qualcomm Core Services that occurs when removing a single event listener. This allows attackers to potentially execute arbitrary code or cause de...
A cryptographic vulnerability in Qualcomm's Trusted Zone when triggered by the High-Level Operating System (HLOS) providing incorrect input. This allows potential cryptographic bypass or manipulation ...
This CVE describes a use-after-free vulnerability in Qualcomm GPU memory management where improper pointer handling during buffer deallocation can cause memory corruption. Attackers could exploit this...
This vulnerability allows memory corruption in the diag component when processing data packets from Unix clients. Attackers could potentially execute arbitrary code or cause denial of service on affec...
This CVE describes a use-after-free vulnerability (CWE-416) in Qualcomm sub-system restart processes that can lead to memory corruption. Attackers could potentially exploit this to execute arbitrary c...
This vulnerability allows memory corruption in Qualcomm video firmware when processing manipulated payloads. Attackers could potentially execute arbitrary code or cause denial of service. Affects devi...
This vulnerability allows information disclosure when a User Equipment (UE) device receives RTP packets from the network. It affects mobile devices with Qualcomm chipsets that process RTP traffic. Att...
This vulnerability allows memory corruption when retrieving CBOR data from a Trusted Application (TA) in Qualcomm components. Attackers could potentially execute arbitrary code or cause denial of serv...
This vulnerability allows memory corruption in Qualcomm firmware drivers when processing responses. Attackers could potentially execute arbitrary code or cause denial of service on affected devices. T...
This vulnerability allows memory corruption in the OPE module when processing command buffers, potentially leading to arbitrary code execution. It affects systems using Qualcomm chipsets with vulnerab...
CVE-2024-45564 is a use-after-free vulnerability in Qualcomm server components where concurrent access to server info objects can cause memory corruption due to incorrect reference count updates. This...
This CVE describes a use-after-free vulnerability (CWE-416) in Qualcomm NPU driver APIs that can be triggered through concurrent calls, leading to memory corruption. It affects devices with Qualcomm c...
This vulnerability in Qualcomm components allows a denial-of-service attack when processing country information elements. It affects devices using Qualcomm chipsets, potentially causing temporary serv...
This CVE describes a memory corruption vulnerability in Qualcomm display drivers that occurs when detaching a device. Successful exploitation could allow attackers to execute arbitrary code or cause d...
CVE-2024-43057 is a use-after-free vulnerability in the Glink Linux driver that allows memory corruption when processing commands. This could enable local privilege escalation or denial of service att...
This vulnerability involves memory corruption during camera sensor power-up or power-down sequences on Qualcomm devices. It could allow attackers to execute arbitrary code or cause denial of service. ...
This vulnerability allows attackers to read sensitive memory contents when parsing malformed OCI (Oracle Call Interface) information elements with invalid length fields. It affects systems using Qualc...
This vulnerability allows memory corruption through improper input validation when processing IOCTL calls related to GPU AHB bus error handling. Attackers could potentially execute arbitrary code or c...
This vulnerability allows memory corruption when userspace makes a compat IOCTL call followed by a normal IOCTL call, potentially leading to privilege escalation or denial of service. It affects Qualc...
This vulnerability allows memory corruption through improper handling of memory map information in IOCTL calls. Attackers could potentially execute arbitrary code or cause denial of service. This affe...
This CVE describes a use-after-free vulnerability in Qualcomm components where memory corruption can occur when process-specific maps are improperly handled in global lists. If exploited, it could all...
This vulnerability allows attackers to cause memory corruption through a specific IOCTL call for group information retrieval. Successful exploitation could lead to arbitrary code execution or system c...
This vulnerability allows memory corruption when two threads simultaneously map and unmap a single node in Qualcomm components. Successful exploitation could lead to arbitrary code execution or system...
This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in affected Wi-Fi systems by sending specially crafted beacon frames with malformed TIM (Traffic Indication Map) Info...
This vulnerability allows memory corruption when processing audio files with large input buffers, potentially leading to arbitrary code execution. It affects Qualcomm audio processing components acros...
This vulnerability allows memory corruption when an IOCTL call is interrupted by a signal in Qualcomm components, potentially leading to arbitrary code execution. It affects devices using Qualcomm chi...
This vulnerability allows memory corruption during cryptographic key pair generation when verifying serialized headers. It affects systems using Qualcomm components that handle key generation, potenti...
This vulnerability allows attackers to cause a denial-of-service condition in IKEv2 implementations by sending malformed fragment packets. It affects systems using Qualcomm's IKEv2 implementation, pot...
CVE-2024-21468 is a use-after-free vulnerability in Qualcomm GPU drivers where failed memory unmapping operations can lead to memory corruption. This allows attackers to potentially execute arbitrary ...
This CVE describes a memory corruption vulnerability in the SPS Application's sorter Trusted Application (TA) when requesting public keys. Successful exploitation could allow attackers to execute arbi...
This vulnerability allows memory corruption when parsing QCP audio files with invalid chunk data sizes. Attackers could potentially execute arbitrary code or cause denial of service by tricking users ...
This vulnerability allows memory corruption when processing QMI requests for memory allocation in DHMS-supported subsystems. It affects Qualcomm chipsets used in mobile devices and IoT products. Attac...
This vulnerability allows memory corruption when invoking the HGSL IOCTL context create function in Qualcomm GPU drivers. Attackers could potentially execute arbitrary code with kernel privileges. Aff...
This CVE describes a use-after-free vulnerability in Qualcomm audio components where a race condition between allocation and deallocation of graph objects during audio playback or recording can lead t...
This vulnerability allows attackers to access sensitive information from memory when parsing dts header atoms in video files. It affects devices using Qualcomm chipsets with vulnerable multimedia proc...
This CVE describes a use-after-free vulnerability in Qualcomm components where registering multiple listeners with the same file descriptor can cause memory corruption. This affects devices using Qual...