Total
214 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47341 | 1 Qualcomm | 62 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 59 more | 2025-11-05 | N/A | 7.8 HIGH |
|
memory corruption while processing an image encoding completion event.
|
|||||
| CVE-2025-27070 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 347 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while performing encryption and decryption commands.
|
|||||
| CVE-2025-47367 | 1 Qualcomm | 62 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 59 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while accessing a buffer during IOCTL processing.
|
|||||
| CVE-2025-47370 | 1 Qualcomm | 272 Ar8035, Ar8035 Firmware, Csrb31024 and 269 more | 2025-11-05 | N/A | 6.5 MEDIUM |
|
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
|
|||||
| CVE-2023-33106 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, Csra6620 and 303 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
|
|||||
| CVE-2023-33107 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 481 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
|
|||||
| CVE-2023-33063 | 1 Qualcomm | 562 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 559 more | 2025-10-27 | N/A | 7.8 HIGH |
|
Memory corruption in DSP Services during a remote call from HLOS to DSP.
|
|||||
| CVE-2024-43065 | 1 Qualcomm | 328 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 325 more | 2025-10-06 | N/A | 7.1 HIGH |
|
Cryptographic issues while generating an asymmetric key pair for RKP use cases.
|
|||||
| CVE-2024-43046 | 1 Qualcomm | 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 617 more | 2025-10-06 | N/A | 5.5 MEDIUM |
|
There may be information disclosure during memory re-allocation in TZ Secure OS.
|
|||||
| CVE-2024-45551 | 1 Qualcomm | 484 Aqt1000, Aqt1000 Firmware, Ar8035 and 481 more | 2025-10-06 | N/A | 6.2 MEDIUM |
|
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
|
|||||
| CVE-2025-21448 | 1 Qualcomm | 538 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 535 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing SSID in action frames.
|
|||||
| CVE-2025-21434 | 1 Qualcomm | 244 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 241 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing EHT operation IE or EHT capability IE.
|
|||||
| CVE-2025-21430 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 447 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
|
|||||
| CVE-2024-33058 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8035 and 375 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.
|
|||||
| CVE-2024-33016 | 1 Qualcomm | 666 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 663 more | 2025-10-03 | N/A | 6.8 MEDIUM |
|
memory corruption when an invalid firehose patch command is invoked.
|
|||||
| CVE-2024-23364 | 1 Qualcomm | 358 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 355 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
|
|||||
| CVE-2024-23362 | 1 Qualcomm | 464 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 461 more | 2025-10-03 | N/A | 7.1 HIGH |
|
Cryptographic issue while parsing RSA keys in COBR format.
|
|||||
| CVE-2024-23359 | 1 Qualcomm | 322 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 319 more | 2025-10-03 | N/A | 8.2 HIGH |
|
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
|
|||||
| CVE-2025-21438 | 1 Qualcomm | 86 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 83 more | 2025-10-03 | N/A | 7.8 HIGH |
|
Memory corruption while IOCTL call is invoked from user-space to read board data.
|
|||||
| CVE-2025-27042 | 1 Qualcomm | 688 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 685 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing video packets received from video firmware.
|
|||||
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling beacon frames with invalid IE header length.
|
|||||
| CVE-2025-21476 | 1 Qualcomm | 84 Qca6391, Qca6391 Firmware, Qca6698aq and 81 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption when passing parameters to the Trusted Virtual Machine during the handshake.
|
|||||
| CVE-2025-21481 | 1 Qualcomm | 498 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 495 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while performing private key encryption in trusted application.
|
|||||
| CVE-2025-27033 | 1 Qualcomm | 64 Qca6698aq, Qca6698aq Firmware, Qcm5430 and 61 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
Information disclosure while running video usecase having rogue firmware.
|
|||||
| CVE-2025-27036 | 1 Qualcomm | 42 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 39 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
Information disclosure when Video engine escape input data is less than expected minimum size.
|
|||||
| CVE-2025-47327 | 1 Qualcomm | 82 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 79 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while encoding the image data.
|
|||||
| CVE-2025-27031 | 1 Qualcomm | 42 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 39 more | 2025-08-20 | N/A | 7.8 HIGH |
|
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.
|
|||||
| CVE-2025-21441 | 1 Qualcomm | 98 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 95 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
|
|||||
| CVE-2025-21440 | 1 Qualcomm | 98 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 95 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
|
|||||
| CVE-2025-21477 | 1 Qualcomm | 178 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 175 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing CCCH data when NW sends data with invalid length.
|
|||||
| CVE-2025-21452 | 1 Qualcomm | 160 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 157 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.
|
|||||
| CVE-2025-21421 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption while processing escape code in API.
|
|||||
| CVE-2025-21423 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption occurs when handling client calls to EnableTestMode through an Escape call.
|
|||||
| CVE-2025-27076 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption while processing simultaneous requests via escape path.
|
|||||
| CVE-2025-27075 | 1 Qualcomm | 72 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 69 more | 2025-08-18 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.
|
|||||
| CVE-2025-21453 | 1 Qualcomm | 532 205 Mobile, 205 Mobile Firmware, 215 Mobile and 529 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
|
|||||
| CVE-2023-28546 | 1 Qualcomm | 560 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 557 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in SPS Application while exporting public key in sorter TA.
|
|||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
|
|||||
| CVE-2023-33092 | 1 Qualcomm | 190 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 187 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
|
|||||
| CVE-2023-33101 | 1 Qualcomm | 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.
|
|||||