Msm8920 firmware
This hub aggregates every CVE we track for Msm8920 firmware, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
207
CVEs tracked
82
Critical
105
High
1
In CISA KEV
Severity distribution
HIGH105CRITICAL82MEDIUM20
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Msm8920 firmware.
- CVE-2023-21626Improper Authentication in HLOS.7.1
- CVE-2022-40510Buffer copy without checking size of input in Audio.9.8
- CVE-2022-33213Memory Corruption in MODEM7.5
- CVE-2022-25705Integer Overflow to Buffer Overflow in Modem7.8
- CVE-2022-25694Use of Out-of-range Pointer Offset in MODEM8.4
- CVE-2022-33233Configuration weakness in modem7.8
- CVE-2022-25695Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IO...8.4
- CVE-2022-25682Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT,...8.4
- CVE-2022-25719Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snap...8.2
- CVE-2022-25718Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdrago...9.1
- CVE-2022-22091Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon I...7.5
- CVE-2022-22062An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Conn...8.2
- CVE-2021-35135A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrago...6.2
- CVE-2021-35072Possible buffer overflow due to improper validation of array index while processing external DIAG command in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, ...7.8
- CVE-2021-35083Possible out of bound read due to improper validation of certificate chain in SSL or Internet key exchange in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Elect...8.2
Product normalization is registry-driven with AI assist and human review. How it works