Total
263 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-33051 | 1 Qualcomm | 578 315 5g Iot, 315 5g Iot Firmware, 9206 Lte and 575 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
|
|||||
| CVE-2023-28550 | 1 Qualcomm | 670 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 667 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
|
|||||
| CVE-2023-33067 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2025-08-11 | N/A | 6.7 MEDIUM |
|
Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.
|
|||||
| CVE-2023-22667 | 1 Qualcomm | 410 205, 205 Firmware, 215 and 407 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory Corruption in Audio while allocating the ion buffer during the music playback.
|
|||||
| CVE-2024-38426 | 1 Qualcomm | 328 205, 205 Firmware, 215 and 325 more | 2025-08-11 | N/A | 5.4 MEDIUM |
|
While processing the authentication message in UE, improper authentication may lead to information disclosure.
|
|||||
| CVE-2023-33120 | 1 Qualcomm | 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
|
|||||
| CVE-2025-21467 | 1 Qualcomm | 212 215 Mobile, 215 Mobile Firmware, Csra6620 and 209 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while reading the FW response from the shared queue.
|
|||||
| CVE-2024-53014 | 1 Qualcomm | 502 215, 215 Firmware, 315 5g Iot Modem and 499 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption may occur while validating ports and channels in Audio driver.
|
|||||
| CVE-2025-27052 | 1 Qualcomm | 312 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 309 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing data packets in diag received from Unix clients.
|
|||||
| CVE-2023-43547 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
|
|||||
| CVE-2024-38402 | 1 Qualcomm | 336 Ar8035, Ar8035 Firmware, Csra6620 and 333 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL call for getting group info.
|
|||||
| CVE-2023-22385 | 1 Qualcomm | 482 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 479 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
|
|||||
| CVE-2023-24848 | 1 Qualcomm | 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
|
|||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
|
|||||
| CVE-2025-21468 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csra6620 and 299 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
|
|||||
| CVE-2023-33059 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 515 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Audio while processing the VOC packet data from ADSP.
|
|||||
| CVE-2023-33018 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 523 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while using the UIM diag command to get the operators name.
|
|||||
| CVE-2024-21475 | 1 Qualcomm | 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when the payload received from firmware is not as per the expected protocol size.
|
|||||
| CVE-2023-28570 | 1 Qualcomm | 168 Aqt1000, Aqt1000 Firmware, Ar8035 and 165 more | 2025-08-11 | N/A | 6.7 MEDIUM |
|
Memory corruption while processing audio effects.
|
|||||
| CVE-2023-33080 | 1 Qualcomm | 732 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 729 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
|
|||||
| CVE-2024-33049 | 1 Qualcomm | 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
|
|||||
| CVE-2024-21468 | 1 Qualcomm | 460 205 Mobile, 205 Mobile Firmware, 215 Mobile and 457 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when there is failed unmap operation in GPU.
|
|||||
| CVE-2023-43551 | 1 Qualcomm | 482 205 Mobile, 205 Mobile Firmware, 215 Mobile and 479 more | 2025-08-11 | N/A | 9.1 CRITICAL |
|
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
|
|||||
| CVE-2023-33031 | 1 Qualcomm | 330 Apq5053-aa, Apq5053-aa Firmware, Apq8009 and 327 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.
|
|||||
| CVE-2024-33060 | 1 Qualcomm | 500 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 497 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when two threads try to map and unmap a single node simultaneously.
|
|||||
| CVE-2024-33045 | 1 Qualcomm | 360 Ar8035, Ar8035 Firmware, Csra6620 and 357 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
|
|||||
| CVE-2023-33017 | 1 Qualcomm | 554 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 551 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
|
|||||
| CVE-2023-28586 | 1 Qualcomm | 626 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 623 more | 2025-08-11 | N/A | 6.0 MEDIUM |
|
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
|
|||||
| CVE-2023-33069 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2025-08-11 | N/A | 6.7 MEDIUM |
|
Memory corruption in Audio while processing the calibration data returned from ACDB loader.
|
|||||
| CVE-2023-28551 | 1 Qualcomm | 496 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 493 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
|
|||||
| CVE-2021-30337 | 1 Qualcomm | 420 Apq8009, Apq8009 Firmware, Apq8009w and 417 more | 2025-05-22 | 7.2 HIGH | 8.4 HIGH |
|
Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-22058 | 1 Qualcomm | 158 Apq8009, Apq8009 Firmware, Apq8009w and 155 more | 2025-05-21 | N/A | 8.4 HIGH |
|
Memory corruption due to use after free issue in kernel while processing ION handles in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2024-45581 | 1 Qualcomm | 60 Mdm9628, Mdm9628 Firmware, Qam8295p and 57 more | 2025-05-09 | N/A | 6.6 MEDIUM |
|
Memory corruption while sound model registration for voice activation with audio kernel driver.
|
|||||
| CVE-2022-25736 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2025-05-09 | N/A | 7.5 HIGH |
|
Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-25720 | 1 Qualcomm | 370 Apq8009, Apq8009 Firmware, Apq8009w and 367 more | 2025-05-09 | N/A | 9.8 CRITICAL |
|
Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-25718 | 1 Qualcomm | 284 Apq8009, Apq8009 Firmware, Apq8009w and 281 more | 2025-05-09 | N/A | 9.1 CRITICAL |
|
Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-25687 | 1 Qualcomm | 362 Apq8009, Apq8009 Firmware, Apq8009w and 359 more | 2025-05-09 | N/A | 7.3 HIGH |
|
memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-33239 | 1 Qualcomm | 468 Apq8009, Apq8009 Firmware, Apq8017 and 465 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-33237 | 1 Qualcomm | 476 Aqt1000, Aqt1000 Firmware, Ar8031 and 473 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-25749 | 1 Qualcomm | 552 Apq8009, Apq8009 Firmware, Apq8017 and 549 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||