Total
214 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-49844 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 359 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while triggering commands in the PlayReady Trusted application.
|
|||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory corruption during management frame processing due to mismatch in T2LM info element.
|
|||||
| CVE-2025-21468 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csra6620 and 299 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
|
|||||
| CVE-2024-33038 | 1 Qualcomm | 90 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 87 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
|
|||||
| CVE-2023-33018 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 523 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while using the UIM diag command to get the operators name.
|
|||||
| CVE-2024-21475 | 1 Qualcomm | 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when the payload received from firmware is not as per the expected protocol size.
|
|||||
| CVE-2025-21466 | 1 Qualcomm | 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a private escape command in an event trigger.
|
|||||
| CVE-2023-33098 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
|
|||||
| CVE-2025-27043 | 1 Qualcomm | 412 Ar8035, Ar8035 Firmware, Csr8811 and 409 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing manipulated payload in video firmware.
|
|||||
| CVE-2023-43554 | 1 Qualcomm | 84 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 81 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while processing IOCTL handler in FastRPC.
|
|||||
| CVE-2024-53009 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8035 and 375 more | 2025-08-11 | N/A | 5.3 MEDIUM |
|
Memory corruption while operating the mailbox in Automotive.
|
|||||
| CVE-2024-33047 | 1 Qualcomm | 48 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 45 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when the captureRead QDCM command is invoked from user-space.
|
|||||
| CVE-2025-21432 | 1 Qualcomm | 492 Aqt1000, Aqt1000 Firmware, Ar8035 and 489 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while retrieving the CBOR data from TA.
|
|||||
| CVE-2025-21475 | 1 Qualcomm | 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing escape code, when DisplayId is passed with large unsigned value.
|
|||||
| CVE-2023-33023 | 1 Qualcomm | 576 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 573 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while processing finish_sign command to pass a rsp buffer.
|
|||||
| CVE-2023-43542 | 1 Qualcomm | 418 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 415 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.
|
|||||
| CVE-2023-33054 | 1 Qualcomm | 336 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 333 more | 2025-08-11 | N/A | 9.1 CRITICAL |
|
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
|
|||||
| CVE-2024-21468 | 1 Qualcomm | 460 205 Mobile, 205 Mobile Firmware, 215 Mobile and 457 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when there is failed unmap operation in GPU.
|
|||||
| CVE-2024-38397 | 1 Qualcomm | 232 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 229 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing probe response and assoc response frame.
|
|||||
| CVE-2025-27050 | 1 Qualcomm | 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing event close when client process terminates abruptly.
|
|||||
| CVE-2023-43530 | 1 Qualcomm | 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more | 2025-08-11 | N/A | 5.9 MEDIUM |
|
Memory corruption in HLOS while checking for the storage type.
|
|||||
| CVE-2023-33022 | 1 Qualcomm | 424 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 421 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in HLOS while invoking IOCTL calls from user-space.
|
|||||
| CVE-2023-43551 | 1 Qualcomm | 482 205 Mobile, 205 Mobile Firmware, 215 Mobile and 479 more | 2025-08-11 | N/A | 9.1 CRITICAL |
|
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
|
|||||
| CVE-2024-33060 | 1 Qualcomm | 500 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 497 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when two threads try to map and unmap a single node simultaneously.
|
|||||
| CVE-2024-33045 | 1 Qualcomm | 360 Ar8035, Ar8035 Firmware, Csra6620 and 357 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
|
|||||
| CVE-2023-33017 | 1 Qualcomm | 554 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 551 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
|
|||||
| CVE-2023-28586 | 1 Qualcomm | 626 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 623 more | 2025-08-11 | N/A | 6.0 MEDIUM |
|
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
|
|||||
| CVE-2024-43056 | 1 Qualcomm | 384 Aqt1000, Aqt1000 Firmware, Ar8035 and 381 more | 2025-08-11 | N/A | 5.5 MEDIUM |
|
Transient DOS during hypervisor virtual I/O operation in a virtual machine.
|
|||||
| CVE-2024-23351 | 1 Qualcomm | 188 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 185 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.
|
|||||
| CVE-2024-33048 | 1 Qualcomm | 378 Ar8035, Ar8035 Firmware, Csr8811 and 375 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
|
|||||
| CVE-2023-28588 | 1 Qualcomm | 428 Apq8017, Apq8017 Firmware, Apq8064au and 425 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Bluetooth Host while rfc slot allocation.
|
|||||
| CVE-2024-33042 | 1 Qualcomm | 406 205, 205 Firmware, 215 and 403 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when Alternative Frequency offset value is set to 255.
|
|||||
| CVE-2025-27046 | 1 Qualcomm | 78 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 75 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing multiple simultaneous escape calls.
|
|||||
| CVE-2025-21459 | 1 Qualcomm | 248 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 245 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing per STA profile in ML IE.
|
|||||
| CVE-2023-33115 | 1 Qualcomm | 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
|
|||||
| CVE-2024-33073 | 1 Qualcomm | 318 Ar8035, Ar8035 Firmware, Csr8811 and 315 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
|
|||||
| CVE-2023-28551 | 1 Qualcomm | 496 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 493 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
|
|||||
| CVE-2023-28587 | 1 Qualcomm | 380 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 377 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
|
|||||
| CVE-2024-23369 | 1 Qualcomm | 236 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 233 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
|
|||||
| CVE-2023-33099 | 1 Qualcomm | 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.
|
|||||