Total
900 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-21448 | 1 Qualcomm | 538 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 535 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing SSID in action frames.
|
|||||
| CVE-2025-21435 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing extended IE in beacon.
|
|||||
| CVE-2025-21430 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 447 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
|
|||||
| CVE-2024-33058 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8035 and 375 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.
|
|||||
| CVE-2024-33016 | 1 Qualcomm | 666 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 663 more | 2025-10-03 | N/A | 6.8 MEDIUM |
|
memory corruption when an invalid firehose patch command is invoked.
|
|||||
| CVE-2024-23364 | 1 Qualcomm | 358 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 355 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
|
|||||
| CVE-2024-23362 | 1 Qualcomm | 464 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 461 more | 2025-10-03 | N/A | 7.1 HIGH |
|
Cryptographic issue while parsing RSA keys in COBR format.
|
|||||
| CVE-2024-23359 | 1 Qualcomm | 322 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 319 more | 2025-10-03 | N/A | 8.2 HIGH |
|
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
|
|||||
| CVE-2025-27042 | 1 Qualcomm | 688 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 685 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing video packets received from video firmware.
|
|||||
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling beacon frames with invalid IE header length.
|
|||||
| CVE-2025-21481 | 1 Qualcomm | 498 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 495 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while performing private key encryption in trusted application.
|
|||||
| CVE-2025-27030 | 1 Qualcomm | 82 C-v2x 9150, C-v2x 9150 Firmware, Qam8295p and 79 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
information disclosure while invoking calibration data from user space to update firmware size.
|
|||||
| CVE-2025-47326 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csr8811 and 237 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling command data during power control processing.
|
|||||
| CVE-2024-43067 | 1 Qualcomm | 116 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 113 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.
|
|||||
| CVE-2024-53016 | 1 Qualcomm | 68 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 65 more | 2025-08-20 | N/A | 6.6 MEDIUM |
|
Memory corruption while processing I2C settings in Camera driver.
|
|||||
| CVE-2024-53013 | 1 Qualcomm | 120 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 117 more | 2025-08-20 | N/A | 6.6 MEDIUM |
|
Memory corruption may occur while processing voice call registration with user.
|
|||||
| CVE-2025-21477 | 1 Qualcomm | 178 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 175 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing CCCH data when NW sends data with invalid length.
|
|||||
| CVE-2025-21455 | 1 Qualcomm | 58 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 55 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption while submitting blob data to kernel space though IOCTL.
|
|||||
| CVE-2025-21452 | 1 Qualcomm | 160 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 157 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.
|
|||||
| CVE-2025-27071 | 1 Qualcomm | 68 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 65 more | 2025-08-19 | N/A | 7.3 HIGH |
|
Memory corruption while processing specific files in Powerline Communication Firmware.
|
|||||
| CVE-2024-21459 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Ar9380 and 347 more | 2025-08-15 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling beacon or probe response frame in STA.
|
|||||
| CVE-2023-33055 | 1 Qualcomm | 304 Apq5053-aa, Apq5053-aa Firmware, Aqt1000 and 301 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Audio while invoking callback function in driver from ADSP.
|
|||||
| CVE-2023-33066 | 1 Qualcomm | 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in Audio while processing RT proxy port register driver.
|
|||||
| CVE-2023-28566 | 1 Qualcomm | 250 Aqt1000, Aqt1000 Firmware, Csrb31024 and 247 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in WLAN HAL while handling the WMI state info command.
|
|||||
| CVE-2023-28556 | 1 Qualcomm | 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 449 more | 2025-08-11 | N/A | 7.1 HIGH |
|
Cryptographic issue in HLOS during key management.
|
|||||
| CVE-2023-28542 | 1 Qualcomm | 376 315 5g Iot, 315 5g Iot Firmware, Apq8064au and 373 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while fetching TX status information.
|
|||||
| CVE-2023-28541 | 1 Qualcomm | 398 Aqt1000, Aqt1000 Firmware, Ar8031 and 395 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
|
|||||
| CVE-2025-21453 | 1 Qualcomm | 532 205 Mobile, 205 Mobile Firmware, 215 Mobile and 529 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
|
|||||
| CVE-2023-28546 | 1 Qualcomm | 560 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 557 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in SPS Application while exporting public key in sorter TA.
|
|||||
| CVE-2023-33086 | 1 Qualcomm | 314 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 311 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.
|
|||||
| CVE-2023-33049 | 1 Qualcomm | 202 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 199 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.
|
|||||
| CVE-2023-33085 | 1 Qualcomm | 210 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 207 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in wearables while processing data from AON.
|
|||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
|
|||||
| CVE-2023-33101 | 1 Qualcomm | 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.
|
|||||
| CVE-2024-43057 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, C-v2x 9150 and 303 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing command in Glink linux.
|
|||||
| CVE-2024-33067 | 1 Qualcomm | 154 Ar8035, Ar8035 Firmware, C-v2x 9150 and 151 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
|
|||||
| CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
|
|||||
| CVE-2023-28569 | 1 Qualcomm | 416 Aqt1000, Aqt1000 Firmware, Ar9380 and 413 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in WLAN HAL while handling command through WMI interfaces.
|
|||||
| CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
|
|||||
| CVE-2024-33050 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
|
|||||