Many security vulnerabilities have been identified in Snapdragon, Qualcomm’s processor designed for mobile platforms, affecting Microsoft, Lenovo, and Samsung devices. Qualcomm has addressed 22 security vulnerabilities detected in Snapdragon as part of its January 2023 security bulletin.
The details of the critical vulnerabilities detected are as follows;
- The security vulnerability, code CVE-2022-33218, affects Snapdragon’s Automotive platform, which has been integrated to meet automotive industry standards and is caused by incorrect input validation.
- The security vulnerability, tracked as CVE-2022-33219, is caused by a buffer overflow error in the Automotive platform.
- The security vulnerability, tracked as CVE-2022-33265, is caused by a memory error affecting the Powerline Communication Firmware component and could lead to the disclosure of sensitive information.
These vulnerabilities affect laptops and other devices made by Lenovo, Microsoft, and Samsung that use Snapdragon processors. Updates that fix vulnerabilities have been released for the affected products and versions. To avoid being the target of attacks that can be carried out using vulnerabilities, it is recommended to apply the published updates immediately.