Total
554 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-27033 | 1 Qualcomm | 64 Qca6698aq, Qca6698aq Firmware, Qcm5430 and 61 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
Information disclosure while running video usecase having rogue firmware.
|
|||||
| CVE-2025-27036 | 1 Qualcomm | 42 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 39 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
Information disclosure when Video engine escape input data is less than expected minimum size.
|
|||||
| CVE-2025-47327 | 1 Qualcomm | 82 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 79 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while encoding the image data.
|
|||||
| CVE-2025-27031 | 1 Qualcomm | 42 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 39 more | 2025-08-20 | N/A | 7.8 HIGH |
|
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.
|
|||||
| CVE-2025-21441 | 1 Qualcomm | 98 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 95 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
|
|||||
| CVE-2025-21440 | 1 Qualcomm | 98 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 95 more | 2025-08-20 | N/A | 7.8 HIGH |
|
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
|
|||||
| CVE-2025-21477 | 1 Qualcomm | 178 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 175 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing CCCH data when NW sends data with invalid length.
|
|||||
| CVE-2025-21452 | 1 Qualcomm | 160 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 157 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.
|
|||||
| CVE-2025-21421 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption while processing escape code in API.
|
|||||
| CVE-2025-21423 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption occurs when handling client calls to EnableTestMode through an Escape call.
|
|||||
| CVE-2025-27076 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption while processing simultaneous requests via escape path.
|
|||||
| CVE-2025-27075 | 1 Qualcomm | 72 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 69 more | 2025-08-18 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.
|
|||||
| CVE-2023-33055 | 1 Qualcomm | 304 Apq5053-aa, Apq5053-aa Firmware, Aqt1000 and 301 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Audio while invoking callback function in driver from ADSP.
|
|||||
| CVE-2023-33066 | 1 Qualcomm | 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in Audio while processing RT proxy port register driver.
|
|||||
| CVE-2023-28556 | 1 Qualcomm | 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 449 more | 2025-08-11 | N/A | 7.1 HIGH |
|
Cryptographic issue in HLOS during key management.
|
|||||
| CVE-2023-28542 | 1 Qualcomm | 376 315 5g Iot, 315 5g Iot Firmware, Apq8064au and 373 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while fetching TX status information.
|
|||||
| CVE-2023-28541 | 1 Qualcomm | 398 Aqt1000, Aqt1000 Firmware, Ar8031 and 395 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
|
|||||
| CVE-2025-21453 | 1 Qualcomm | 532 205 Mobile, 205 Mobile Firmware, 215 Mobile and 529 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
|
|||||
| CVE-2023-28546 | 1 Qualcomm | 560 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 557 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in SPS Application while exporting public key in sorter TA.
|
|||||
| CVE-2023-43518 | 1 Qualcomm | 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more | 2025-08-11 | N/A | 7.3 HIGH |
|
Memory corruption in video while parsing invalid mp2 clip.
|
|||||
| CVE-2023-33086 | 1 Qualcomm | 314 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 311 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.
|
|||||
| CVE-2023-43514 | 1 Qualcomm | 166 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 163 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
|
|||||
| CVE-2023-33049 | 1 Qualcomm | 202 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 199 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.
|
|||||
| CVE-2023-43519 | 1 Qualcomm | 268 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 265 more | 2025-08-11 | N/A | 7.3 HIGH |
|
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
|
|||||
| CVE-2023-33085 | 1 Qualcomm | 210 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 207 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in wearables while processing data from AON.
|
|||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
|
|||||
| CVE-2023-33092 | 1 Qualcomm | 190 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 187 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
|
|||||
| CVE-2023-33101 | 1 Qualcomm | 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.
|
|||||
| CVE-2023-33029 | 1 Qualcomm | 264 Apq8009, Apq8009 Firmware, Ar8035 and 261 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in DSP Service during a remote call from HLOS to DSP.
|
|||||
| CVE-2025-21469 | 1 Qualcomm | 40 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 37 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call.
|
|||||
| CVE-2023-43556 | 1 Qualcomm | 136 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 133 more | 2025-08-11 | N/A | 9.3 CRITICAL |
|
Memory corruption in Hypervisor when platform information mentioned is not aligned.
|
|||||
| CVE-2024-53027 | 1 Qualcomm | 424 205, 205 Firmware, Apq8017 and 421 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS may occur while processing the country IE.
|
|||||
| CVE-2023-33113 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
|
|||||
| CVE-2025-21433 | 1 Qualcomm | 550 215 Mobile, 215 Mobile Firmware, Apq8017 and 547 more | 2025-08-11 | N/A | 6.2 MEDIUM |
|
Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.
|
|||||
| CVE-2023-43550 | 1 Qualcomm | 270 Ar8035, Ar8035 Firmware, Csra6620 and 267 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.
|
|||||
| CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
|
|||||
| CVE-2023-43531 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 253 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while verifying the serialized header when the key pairs are generated.
|
|||||
| CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
|
|||||
| CVE-2024-33050 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
|
|||||
| CVE-2025-27061 | 1 Qualcomm | 688 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 685 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
|
|||||