Total
454 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-21430 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 447 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
|
|||||
| CVE-2025-21428 | 1 Qualcomm | 138 9206 Lte Modem, 9206 Lte Modem Firmware, Apq8017 and 135 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session.
|
|||||
| CVE-2024-33016 | 1 Qualcomm | 666 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 663 more | 2025-10-03 | N/A | 6.8 MEDIUM |
|
memory corruption when an invalid firehose patch command is invoked.
|
|||||
| CVE-2024-23364 | 1 Qualcomm | 358 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 355 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
|
|||||
| CVE-2024-23358 | 1 Qualcomm | 106 205 Mobile Platform, 205 Mobile Platform Firmware, Apq8017 and 103 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem.
|
|||||
| CVE-2024-23359 | 1 Qualcomm | 322 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 319 more | 2025-10-03 | N/A | 8.2 HIGH |
|
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
|
|||||
| CVE-2025-27042 | 1 Qualcomm | 688 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 685 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing video packets received from video firmware.
|
|||||
| CVE-2025-27030 | 1 Qualcomm | 82 C-v2x 9150, C-v2x 9150 Firmware, Qam8295p and 79 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
information disclosure while invoking calibration data from user space to update firmware size.
|
|||||
| CVE-2025-27037 | 1 Qualcomm | 74 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 71 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference to CPU buffers.
|
|||||
| CVE-2024-43067 | 1 Qualcomm | 116 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 113 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.
|
|||||
| CVE-2025-21486 | 1 Qualcomm | 62 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 59 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption during dynamic process creation call when client is only passing address and length of shell binary.
|
|||||
| CVE-2024-53019 | 1 Qualcomm | 162 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 159 more | 2025-08-20 | N/A | 8.2 HIGH |
|
Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.
|
|||||
| CVE-2024-53013 | 1 Qualcomm | 120 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 117 more | 2025-08-20 | N/A | 6.6 MEDIUM |
|
Memory corruption may occur while processing voice call registration with user.
|
|||||
| CVE-2025-21456 | 1 Qualcomm | 128 Ar8035, Ar8035 Firmware, C-v2x 9150 and 125 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL command when multiple threads are called to map/unmap buffer concurrently.
|
|||||
| CVE-2024-45556 | 1 Qualcomm | 120 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 117 more | 2025-08-19 | N/A | 6.5 MEDIUM |
|
Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.
|
|||||
| CVE-2025-21474 | 1 Qualcomm | 90 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption while processing commands from A2dp sink command queue.
|
|||||
| CVE-2023-33055 | 1 Qualcomm | 304 Apq5053-aa, Apq5053-aa Firmware, Aqt1000 and 301 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Audio while invoking callback function in driver from ADSP.
|
|||||
| CVE-2023-33066 | 1 Qualcomm | 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in Audio while processing RT proxy port register driver.
|
|||||
| CVE-2023-33068 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2025-08-11 | N/A | 6.7 MEDIUM |
|
Memory corruption in Audio while processing IIR config data from AFE calibration block.
|
|||||
| CVE-2023-33064 | 1 Qualcomm | 178 Aqt1000, Aqt1000 Firmware, Ar8035 and 175 more | 2025-08-11 | N/A | 5.5 MEDIUM |
|
Transient DOS in Audio when invoking callback function of ASM driver.
|
|||||
| CVE-2025-21453 | 1 Qualcomm | 532 205 Mobile, 205 Mobile Firmware, 215 Mobile and 529 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
|
|||||
| CVE-2023-28546 | 1 Qualcomm | 560 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 557 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in SPS Application while exporting public key in sorter TA.
|
|||||
| CVE-2023-43518 | 1 Qualcomm | 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more | 2025-08-11 | N/A | 7.3 HIGH |
|
Memory corruption in video while parsing invalid mp2 clip.
|
|||||
| CVE-2023-43519 | 1 Qualcomm | 268 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 265 more | 2025-08-11 | N/A | 7.3 HIGH |
|
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
|
|||||
| CVE-2023-33085 | 1 Qualcomm | 210 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 207 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in wearables while processing data from AON.
|
|||||
| CVE-2023-33092 | 1 Qualcomm | 190 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 187 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
|
|||||
| CVE-2025-21433 | 1 Qualcomm | 550 215 Mobile, 215 Mobile Firmware, Apq8017 and 547 more | 2025-08-11 | N/A | 6.2 MEDIUM |
|
Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.
|
|||||
| CVE-2023-43528 | 1 Qualcomm | 182 Ar8035, Ar8035 Firmware, C-v2x 9150 and 179 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
|
|||||
| CVE-2024-43057 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, C-v2x 9150 and 303 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing command in Glink linux.
|
|||||
| CVE-2024-33067 | 1 Qualcomm | 154 Ar8035, Ar8035 Firmware, C-v2x 9150 and 151 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
|
|||||
| CVE-2023-33065 | 1 Qualcomm | 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in Audio while accessing AVCS services from ADSP payload.
|
|||||
| CVE-2025-27061 | 1 Qualcomm | 688 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 685 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
|
|||||
| CVE-2023-43527 | 1 Qualcomm | 108 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 105 more | 2025-08-11 | N/A | 6.8 MEDIUM |
|
Information disclosure while parsing dts header atom in Video.
|
|||||
| CVE-2023-22388 | 1 Qualcomm | 458 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 455 more | 2025-08-11 | N/A | 9.8 CRITICAL |
|
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
|
|||||
| CVE-2023-24849 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
|
|||||
| CVE-2024-38401 | 1 Qualcomm | 80 Ar8035, Ar8035 Firmware, C-v2x 9150 and 77 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing concurrent IOCTL calls.
|
|||||
| CVE-2023-33035 | 1 Qualcomm | 288 Apq5053-aa, Apq5053-aa Firmware, Ar8035 and 285 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while invoking callback function of AFE from ADSP.
|
|||||
| CVE-2025-21424 | 1 Qualcomm | 478 215, 215 Firmware, 315 5g Iot Modem and 475 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while calling the NPU driver APIs concurrently.
|
|||||
| CVE-2023-21631 | 1 Qualcomm | 320 205, 205 Firmware, 215 and 317 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
|
|||||
| CVE-2023-33117 | 1 Qualcomm | 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
|
|||||