Total
554 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-27034 | 1 Qualcomm | 226 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 223 more | 2025-11-28 | N/A | 9.8 CRITICAL |
|
Memory corruption while selecting the PLMN from SOR failed list.
|
|||||
| CVE-2025-21465 | 1 Qualcomm | 698 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 695 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while processing the hash segment in an MBN file.
|
|||||
| CVE-2025-21464 | 1 Qualcomm | 684 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 681 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while reading data from an image using specified offset and size parameters.
|
|||||
| CVE-2025-21463 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while processing the EHT operation IE in the received beacon frame.
|
|||||
| CVE-2024-53026 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
|
|||||
| CVE-2024-53021 | 1 Qualcomm | 450 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 447 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while processing goodbye RTCP packet from network.
|
|||||
| CVE-2025-21487 | 1 Qualcomm | 454 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 451 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
|
|||||
| CVE-2025-27062 | 1 Qualcomm | 306 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8064au and 303 more | 2025-11-28 | N/A | 7.8 HIGH |
|
Memory corruption while handling client exceptions, allowing unauthorized channel access.
|
|||||
| CVE-2025-27066 | 1 Qualcomm | 744 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 741 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while processing an ANQP message.
|
|||||
| CVE-2025-27032 | 1 Qualcomm | 384 Aqt1000, Aqt1000 Firmware, Ar8035 and 381 more | 2025-11-28 | N/A | 7.8 HIGH |
|
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
|
|||||
| CVE-2025-27041 | 1 Qualcomm | 126 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 123 more | 2025-11-05 | N/A | 5.5 MEDIUM |
|
Transient DOS while processing video packets received from video firmware.
|
|||||
| CVE-2025-27049 | 1 Qualcomm | 62 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 59 more | 2025-11-05 | N/A | 5.5 MEDIUM |
|
Transient DOS while processing IOCTL call for image encoding.
|
|||||
| CVE-2025-27053 | 1 Qualcomm | 638 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 635 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption during PlayReady APP usecase while processing TA commands.
|
|||||
| CVE-2025-27054 | 1 Qualcomm | 598 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 595 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while processing a malformed license file during reboot.
|
|||||
| CVE-2025-47341 | 1 Qualcomm | 62 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 59 more | 2025-11-05 | N/A | 7.8 HIGH |
|
memory corruption while processing an image encoding completion event.
|
|||||
| CVE-2025-27070 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 347 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while performing encryption and decryption commands.
|
|||||
| CVE-2025-47367 | 1 Qualcomm | 62 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 59 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while accessing a buffer during IOCTL processing.
|
|||||
| CVE-2025-47370 | 1 Qualcomm | 272 Ar8035, Ar8035 Firmware, Csrb31024 and 269 more | 2025-11-05 | N/A | 6.5 MEDIUM |
|
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
|
|||||
| CVE-2023-33106 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, Csra6620 and 303 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
|
|||||
| CVE-2023-33107 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 481 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
|
|||||
| CVE-2022-22071 | 1 Qualcomm | 180 Apq8053, Apq8053 Firmware, Ar8031 and 177 more | 2025-10-28 | 7.2 HIGH | 8.4 HIGH |
|
Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
|
|||||
| CVE-2023-33063 | 1 Qualcomm | 562 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 559 more | 2025-10-27 | N/A | 7.8 HIGH |
|
Memory corruption in DSP Services during a remote call from HLOS to DSP.
|
|||||
| CVE-2024-43066 | 1 Qualcomm | 196 Csrb31024, Csrb31024 Firmware, Fastconnect 6200 and 193 more | 2025-10-06 | N/A | 7.8 HIGH |
|
Memory corruption while handling file descriptor during listener registration/de-registration.
|
|||||
| CVE-2024-43065 | 1 Qualcomm | 328 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 325 more | 2025-10-06 | N/A | 7.1 HIGH |
|
Cryptographic issues while generating an asymmetric key pair for RKP use cases.
|
|||||
| CVE-2024-43046 | 1 Qualcomm | 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 617 more | 2025-10-06 | N/A | 5.5 MEDIUM |
|
There may be information disclosure during memory re-allocation in TZ Secure OS.
|
|||||
| CVE-2024-45552 | 1 Qualcomm | 292 Apq8064au, Apq8064au Firmware, Fastconnect 6200 and 289 more | 2025-10-06 | N/A | 8.2 HIGH |
|
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.
|
|||||
| CVE-2024-45551 | 1 Qualcomm | 484 Aqt1000, Aqt1000 Firmware, Ar8035 and 481 more | 2025-10-06 | N/A | 6.2 MEDIUM |
|
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
|
|||||
| CVE-2025-21448 | 1 Qualcomm | 538 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 535 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing SSID in action frames.
|
|||||
| CVE-2025-21434 | 1 Qualcomm | 244 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 241 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing EHT operation IE or EHT capability IE.
|
|||||
| CVE-2025-21430 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 447 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
|
|||||
| CVE-2024-33058 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8035 and 375 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.
|
|||||
| CVE-2024-33016 | 1 Qualcomm | 666 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 663 more | 2025-10-03 | N/A | 6.8 MEDIUM |
|
memory corruption when an invalid firehose patch command is invoked.
|
|||||
| CVE-2024-23364 | 1 Qualcomm | 358 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 355 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
|
|||||
| CVE-2024-23362 | 1 Qualcomm | 464 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 461 more | 2025-10-03 | N/A | 7.1 HIGH |
|
Cryptographic issue while parsing RSA keys in COBR format.
|
|||||
| CVE-2024-23359 | 1 Qualcomm | 322 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 319 more | 2025-10-03 | N/A | 8.2 HIGH |
|
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
|
|||||
| CVE-2025-21438 | 1 Qualcomm | 86 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 83 more | 2025-10-03 | N/A | 7.8 HIGH |
|
Memory corruption while IOCTL call is invoked from user-space to read board data.
|
|||||
| CVE-2025-27042 | 1 Qualcomm | 688 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 685 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing video packets received from video firmware.
|
|||||
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling beacon frames with invalid IE header length.
|
|||||
| CVE-2025-21476 | 1 Qualcomm | 84 Qca6391, Qca6391 Firmware, Qca6698aq and 81 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption when passing parameters to the Trusted Virtual Machine during the handshake.
|
|||||
| CVE-2025-21481 | 1 Qualcomm | 498 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 495 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while performing private key encryption in trusted application.
|
|||||