Total
651 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-27052 | 1 Qualcomm | 312 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 309 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing data packets in diag received from Unix clients.
|
|||||
| CVE-2025-21446 | 1 Qualcomm | 480 Ar8035, Ar8035 Firmware, Ar9380 and 477 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
|
|||||
| CVE-2024-21481 | 1 Qualcomm | 332 Aqt1000, Aqt1000 Firmware, Ar8035 and 329 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
|
|||||
| CVE-2024-33052 | 1 Qualcomm | 406 205 Mobile, 205 Mobile Firmware, 215 Mobile and 403 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when user provides data for FM HCI command control operations.
|
|||||
| CVE-2023-43547 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
|
|||||
| CVE-2024-38402 | 1 Qualcomm | 336 Ar8035, Ar8035 Firmware, Csra6620 and 333 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL call for getting group info.
|
|||||
| CVE-2023-33119 | 1 Qualcomm | 322 Aqt1000, Aqt1000 Firmware, Ar8035 and 319 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.
|
|||||
| CVE-2023-22385 | 1 Qualcomm | 482 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 479 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
|
|||||
| CVE-2024-49844 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 359 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while triggering commands in the PlayReady Trusted application.
|
|||||
| CVE-2023-24848 | 1 Qualcomm | 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
|
|||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory corruption during management frame processing due to mismatch in T2LM info element.
|
|||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
|
|||||
| CVE-2025-21468 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csra6620 and 299 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
|
|||||
| CVE-2023-33059 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 515 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Audio while processing the VOC packet data from ADSP.
|
|||||
| CVE-2023-33018 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 523 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while using the UIM diag command to get the operators name.
|
|||||
| CVE-2023-28554 | 1 Qualcomm | 296 Aqt1000, Aqt1000 Firmware, Ar9380 and 293 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
|
|||||
| CVE-2024-21475 | 1 Qualcomm | 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when the payload received from firmware is not as per the expected protocol size.
|
|||||
| CVE-2023-28570 | 1 Qualcomm | 168 Aqt1000, Aqt1000 Firmware, Ar8035 and 165 more | 2025-08-11 | N/A | 6.7 MEDIUM |
|
Memory corruption while processing audio effects.
|
|||||
| CVE-2023-33098 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
|
|||||
| CVE-2023-28539 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Ar9380 and 311 more | 2025-08-11 | N/A | 6.6 MEDIUM |
|
Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.
|
|||||
| CVE-2024-45562 | 1 Qualcomm | 160 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 157 more | 2025-08-11 | N/A | 6.6 MEDIUM |
|
Memory corruption during concurrent access to server info object due to unprotected critical field.
|
|||||
| CVE-2024-53009 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8035 and 375 more | 2025-08-11 | N/A | 5.3 MEDIUM |
|
Memory corruption while operating the mailbox in Automotive.
|
|||||
| CVE-2023-33080 | 1 Qualcomm | 732 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 729 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
|
|||||
| CVE-2023-28578 | 1 Qualcomm | 680 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 677 more | 2025-08-11 | N/A | 9.3 CRITICAL |
|
Memory corruption in Core Services while executing the command for removing a single event listener.
|
|||||
| CVE-2023-24854 | 1 Qualcomm | 326 215, 215 Firmware, Ar8035 and 323 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.
|
|||||
| CVE-2023-33027 | 1 Qualcomm | 656 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 653 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing rsn ies.
|
|||||
| CVE-2023-33023 | 1 Qualcomm | 576 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 573 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while processing finish_sign command to pass a rsp buffer.
|
|||||
| CVE-2023-43542 | 1 Qualcomm | 418 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 415 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.
|
|||||
| CVE-2024-33049 | 1 Qualcomm | 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
|
|||||
| CVE-2024-21468 | 1 Qualcomm | 460 205 Mobile, 205 Mobile Firmware, 215 Mobile and 457 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when there is failed unmap operation in GPU.
|
|||||
| CVE-2024-38397 | 1 Qualcomm | 232 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 229 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing probe response and assoc response frame.
|
|||||
| CVE-2023-43530 | 1 Qualcomm | 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more | 2025-08-11 | N/A | 5.9 MEDIUM |
|
Memory corruption in HLOS while checking for the storage type.
|
|||||
| CVE-2023-24851 | 1 Qualcomm | 382 Ar8035, Ar8035 Firmware, Csr8811 and 379 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
|
|||||
| CVE-2023-43551 | 1 Qualcomm | 482 205 Mobile, 205 Mobile Firmware, 215 Mobile and 479 more | 2025-08-11 | N/A | 9.1 CRITICAL |
|
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
|
|||||
| CVE-2023-28545 | 1 Qualcomm | 408 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 405 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory corruption in TZ Secure OS while loading an app ELF.
|
|||||
| CVE-2023-33109 | 1 Qualcomm | 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 617 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
|
|||||
| CVE-2023-33031 | 1 Qualcomm | 330 Apq5053-aa, Apq5053-aa Firmware, Apq8009 and 327 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.
|
|||||
| CVE-2024-33060 | 1 Qualcomm | 500 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 497 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when two threads try to map and unmap a single node simultaneously.
|
|||||
| CVE-2024-33045 | 1 Qualcomm | 360 Ar8035, Ar8035 Firmware, Csra6620 and 357 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
|
|||||
| CVE-2023-21629 | 1 Qualcomm | 424 205, 205 Firmware, 215 and 421 more | 2025-08-11 | N/A | 6.8 MEDIUM |
|
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
|
|||||