Qualcomm Mdm8207 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Qualcomm Mdm8207 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (110)
CVE-2021-1920 — CVSS 9.8 (critical): Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2021-1916 — CVSS 9.8 (critical): Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto…
CVE-2021-1919 — CVSS 9.8 (critical): Integer underflow can occur when the RTCP length is lesser than than the actual blocks present in Snapdragon Auto, Snapdragon Compute…
CVE-2022-25727 — CVSS 9.8 (critical): Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT…
CVE-2022-40510 — CVSS 9.8 (critical): Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
CVE-2020-11192 — CVSS 9.8 (critical): Out of bound write while parsing SDP string due to missing check on null termination in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2021-1975 — CVSS 9.8 (critical): Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute…
CVE-2022-25740 — CVSS 9.8 (critical): Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
CVE-2022-33259 — CVSS 9.8 (critical): Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.
CVE-2020-11227 — CVSS 9.8 (critical): Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdragon Auto…
CVE-2020-11170 — CVSS 9.8 (critical): Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in…
CVE-2021-30341 — CVSS 9.8 (critical): Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2020-11166 — CVSS 9.1 (critical): Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in…
CVE-2023-43551 — CVSS 9.1 (critical): Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send…
CVE-2020-11188 — CVSS 9.1 (critical): Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon…
CVE-2020-11190 — CVSS 9.1 (critical): Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon…
CVE-2021-30342 — CVSS 9.1 (critical): Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in…
CVE-2020-11171 — CVSS 9.1 (critical): Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon…
CVE-2020-11189 — CVSS 9.1 (critical): Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon…
CVE-2021-1924 — CVSS 9.0 (critical): Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute…
CVE-2020-11177 — CVSS 8.8 (high): User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in…
CVE-2021-30261 — CVSS 8.4 (high): Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in…
CVE-2022-25682 — CVSS 8.4 (high): Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon…
CVE-2022-25695 — CVSS 8.4 (high): Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto…
CVE-2020-11251 — CVSS 8.2 (high): Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon Auto…
CVE-2022-25747 — CVSS 8.2 (high): Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message
CVE-2020-11191 — CVSS 8.2 (high): Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute…
CVE-2022-25738 — CVSS 8.2 (high): Information disclosure in modem due to buffer over-red while performing checksum of packet received
CVE-2022-33228 — CVSS 8.2 (high): Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header.
CVE-2022-25726 — CVSS 8.2 (high): Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
CVE-2022-33295 — CVSS 8.2 (high): Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.
CVE-2022-33291 — CVSS 8.2 (high): Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.
CVE-2022-33258 — CVSS 8.2 (high): Information disclosure due to buffer over-read in modem while reading configuration parameters.
CVE-2022-33287 — CVSS 8.2 (high): Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.
CVE-2022-25732 — CVSS 8.2 (high): Information disclosure in modem due to buffer over read in dns client due to missing length check
CVE-2022-33229 — CVSS 8.2 (high): Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets.
CVE-2022-25730 — CVSS 8.2 (high): Information disclosure in modem due to improper check of IP type while processing DNS server query
CVE-2022-25728 — CVSS 8.2 (high): Information disclosure in modem due to buffer over-read while processing response from DNS server
CVE-2023-24848 — CVSS 8.2 (high): Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
CVE-2020-11285 — CVSS 8.2 (high): Buffer over-read while unpacking the RTCP packet we may read extra byte if wrong length is provided in RTCP packets in Snapdragon Auto…
CVE-2022-33264 — CVSS 7.9 (high): Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
CVE-2022-25705 — CVSS 7.8 (high): Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
CVE-2020-11195 — CVSS 7.8 (high): Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffers in…
CVE-2020-11204 — CVSS 7.8 (high): Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters…
CVE-2020-11289 — CVSS 7.8 (high): Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute…
CVE-2020-11292 — CVSS 7.8 (high): Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon…
CVE-2020-11304 — CVSS 7.8 (high): Possible out of bound read in DRM due to improper buffer length check. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…
CVE-2021-1959 — CVSS 7.8 (high): Possible memory corruption due to lack of bound check of input index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…
CVE-2021-1973 — CVSS 7.8 (high): A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…
CVE-2021-30254 — CVSS 7.8 (high): Possible buffer overflow due to improper input validation in factory calibration and test DIAG command in Snapdragon Auto, Snapdragon…
CVE-2021-30255 — CVSS 7.8 (high): Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2021-30268 — CVSS 7.8 (high): Possible heap Memory Corruption Issue due to lack of input validation when sending HWTC IQ Capture command in Snapdragon Auto, Snapdragon…
CVE-2021-30289 — CVSS 7.8 (high): Possible buffer overflow due to lack of range check while processing a DIAG command for COEX management in Snapdragon Auto, Snapdragon…
CVE-2021-30323 — CVSS 7.8 (high): Improper validation of maximum size of data write to EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute…
CVE-2021-30333 — CVSS 7.8 (high): Improper validation of buffer size input to the EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2022-33233 — CVSS 7.8 (high): Memory corruption due to configuration weakness in modem wile sending command to write protected files.
CVE-2023-28550 — CVSS 7.8 (high): Memory corruption in MPP performance while accessing DSM watermark using external memory address.
CVE-2023-28551 — CVSS 7.8 (high): Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
CVE-2022-33223 — CVSS 7.5 (high): Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
CVE-2022-25731 — CVSS 7.5 (high): Information disclosure in modem due to buffer over-read while processing packets from DNS server
CVE-2022-33294 — CVSS 7.5 (high): Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.
CVE-2021-30273 — CVSS 7.5 (high): Possible assertion due to improper handling of IPV6 packet with invalid length in destination options header in Snapdragon Auto, Snapdragon…
CVE-2022-33304 — CVSS 7.5 (high): Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
CVE-2021-1914 — CVSS 7.5 (high): Loop with unreachable exit condition may occur due to improper handling of unsupported input in Snapdragon Auto, Snapdragon Compute…
CVE-2020-11279 — CVSS 7.5 (high): Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon Auto…
CVE-2024-23353 — CVSS 7.5 (high): Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
CVE-2020-11255 — CVSS 7.5 (high): Denial of service while processing RTCP packets containing multiple SDES reports due to memory for last SDES packet is freed and rest of…
CVE-2020-11226 — CVSS 7.5 (high): Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute…
CVE-2022-25739 — CVSS 7.5 (high): Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
CVE-2022-25742 — CVSS 7.5 (high): Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial…
CVE-2022-25737 — CVSS 7.5 (high): Information disclosure in modem due to missing NULL check while reading packets received from local network
CVE-2022-25735 — CVSS 7.5 (high): Denial of service in modem due to missing null check while processing TCP or UDP packets from server
CVE-2021-30344 — CVSS 7.5 (high): Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute…
CVE-2021-30300 — CVSS 7.5 (high): Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when…
CVE-2021-30284 — CVSS 7.5 (high): Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto…
CVE-2021-30271 — CVSS 7.3 (high): Possible null pointer dereference in trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto…
CVE-2021-30270 — CVSS 7.3 (high): Possible null pointer dereference in thread profile trap handler due to lack of thread ID validation before dereferencing it in Snapdragon…
CVE-2021-1909 — CVSS 7.3 (high): Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2021-30272 — CVSS 7.3 (high): Possible null pointer dereference in thread cache operation handler due to lack of validation of user provided input in Snapdragon Auto…
CVE-2020-11132 — CVSS 7.1 (high): u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, Snapdragon…
CVE-2023-21626 — CVSS 7.1 (high): Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
CVE-2021-1935 — CVSS 7.1 (high): Possible null pointer dereference due to lack of validation check for passed pointer during key import in Snapdragon Auto, Snapdragon…
CVE-2022-33302 — CVSS 6.8 (medium): Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
CVE-2022-33289 — CVSS 6.8 (medium): Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
CVE-2020-11221 — CVSS 5.5 (medium): Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient…
CVE-2020-11123 — CVSS 5.5 (medium): u'information disclosure in gatekeeper trustzone implementation as the throttling mechanism to prevent brute force attempts at getting…
CVE-2020-11199 — CVSS 5.5 (medium): HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in…