Filtered by vendor Qualcomm
Subscribe
Filtered by product Snapdragon X65 5g Modem-rf System
Subscribe
Total
208 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-23359 | 1 Qualcomm | 322 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 319 more | 2025-10-03 | N/A | 8.2 HIGH |
|
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
|
|||||
| CVE-2025-21481 | 1 Qualcomm | 498 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 495 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while performing private key encryption in trusted application.
|
|||||
| CVE-2025-47326 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csr8811 and 237 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling command data during power control processing.
|
|||||
| CVE-2025-21477 | 1 Qualcomm | 178 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 175 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing CCCH data when NW sends data with invalid length.
|
|||||
| CVE-2024-45556 | 1 Qualcomm | 120 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 117 more | 2025-08-19 | N/A | 6.5 MEDIUM |
|
Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.
|
|||||
| CVE-2024-21459 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Ar9380 and 347 more | 2025-08-15 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling beacon or probe response frame in STA.
|
|||||
| CVE-2023-28556 | 1 Qualcomm | 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 449 more | 2025-08-11 | N/A | 7.1 HIGH |
|
Cryptographic issue in HLOS during key management.
|
|||||
| CVE-2023-28546 | 1 Qualcomm | 560 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 557 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in SPS Application while exporting public key in sorter TA.
|
|||||
| CVE-2023-33049 | 1 Qualcomm | 202 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 199 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.
|
|||||
| CVE-2023-33085 | 1 Qualcomm | 210 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 207 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in wearables while processing data from AON.
|
|||||
| CVE-2023-33029 | 1 Qualcomm | 264 Apq8009, Apq8009 Firmware, Ar8035 and 261 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in DSP Service during a remote call from HLOS to DSP.
|
|||||
| CVE-2023-33113 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
|
|||||
| CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
|
|||||
| CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
|
|||||
| CVE-2024-33050 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
|
|||||
| CVE-2023-22388 | 1 Qualcomm | 458 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 455 more | 2025-08-11 | N/A | 9.8 CRITICAL |
|
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
|
|||||
| CVE-2023-24849 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
|
|||||
| CVE-2023-33062 | 1 Qualcomm | 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing a BTM request.
|
|||||
| CVE-2023-33072 | 1 Qualcomm | 490 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 487 more | 2025-08-11 | N/A | 9.3 CRITICAL |
|
Memory corruption in Core while processing control functions.
|
|||||
| CVE-2023-33046 | 1 Qualcomm | 98 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 95 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.
|
|||||
| CVE-2023-28550 | 1 Qualcomm | 670 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 667 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
|
|||||
| CVE-2023-33028 | 1 Qualcomm | 352 Ar8035, Ar8035 Firmware, Ar9380 and 349 more | 2025-08-11 | N/A | 9.8 CRITICAL |
|
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
|
|||||
| CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parse fils IE with length equal to 1.
|
|||||
| CVE-2023-33089 | 1 Qualcomm | 456 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 453 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
|
|||||
| CVE-2023-24843 | 1 Qualcomm | 132 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 129 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Modem while triggering a camping on an 5G cell.
|
|||||
| CVE-2023-33088 | 1 Qualcomm | 612 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 609 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when processing cmd parameters while parsing vdev.
|
|||||
| CVE-2023-24847 | 1 Qualcomm | 514 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 511 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Modem while allocating DSM items.
|
|||||
| CVE-2023-33044 | 1 Qualcomm | 180 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 177 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Data modem while handling TLB control messages from the Network.
|
|||||
| CVE-2024-33057 | 1 Qualcomm | 342 Ar8035, Ar8035 Firmware, Csr8811 and 339 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
|
|||||
| CVE-2023-28585 | 1 Qualcomm | 562 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 559 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory corruption while loading an ELF segment in TEE Kernel.
|
|||||
| CVE-2023-33112 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
|
|||||
| CVE-2024-21481 | 1 Qualcomm | 332 Aqt1000, Aqt1000 Firmware, Ar8035 and 329 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
|
|||||
| CVE-2023-22385 | 1 Qualcomm | 482 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 479 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
|
|||||
| CVE-2023-24850 | 1 Qualcomm | 412 Apq5053-aa, Apq5053-aa Firmware, Apq8017 and 409 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
|
|||||
| CVE-2023-24848 | 1 Qualcomm | 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
|
|||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
|
|||||
| CVE-2023-33018 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 523 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while using the UIM diag command to get the operators name.
|
|||||
| CVE-2023-33043 | 1 Qualcomm | 118 Ar8035, Ar8035 Firmware, Qca6391 and 115 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.
|
|||||
| CVE-2023-33098 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
|
|||||
| CVE-2023-28539 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Ar9380 and 311 more | 2025-08-11 | N/A | 6.6 MEDIUM |
|
Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.
|
|||||