Total
167 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-45580 | 1 Qualcomm | 74 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 71 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.
|
|||||
| CVE-2024-49836 | 1 Qualcomm | 58 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 55 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.
|
|||||
| CVE-2024-49838 | 1 Qualcomm | 338 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 335 more | 2025-02-05 | N/A | 8.2 HIGH |
|
Information disclosure while parsing the OCI IE with invalid length.
|
|||||
| CVE-2024-49834 | 1 Qualcomm | 254 Csra6620, Csra6620 Firmware, Csra6640 and 251 more | 2025-02-05 | N/A | 7.8 HIGH |
|
Memory corruption while power-up or power-down sequence of the camera sensor.
|
|||||
| CVE-2024-45571 | 1 Qualcomm | 300 Ar8035, Ar8035 Firmware, Csr8811 and 297 more | 2025-02-05 | N/A | 7.8 HIGH |
|
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.
|
|||||
| CVE-2024-49833 | 1 Qualcomm | 160 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 157 more | 2025-02-05 | N/A | 7.8 HIGH |
|
Memory corruption can occur in the camera when an invalid CID is used.
|
|||||
| CVE-2024-38416 | 1 Qualcomm | 144 Ar8035, Ar8035 Firmware, C-v2x 9150 and 141 more | 2025-02-05 | N/A | 6.1 MEDIUM |
|
Information disclosure during audio playback.
|
|||||
| CVE-2024-38418 | 1 Qualcomm | 124 C-v2x 9150, C-v2x 9150 Firmware, Csrb31024 and 121 more | 2025-02-05 | N/A | 7.8 HIGH |
|
Memory corruption while parsing the memory map info in IOCTL calls.
|
|||||
| CVE-2024-45569 | 1 Qualcomm | 348 Ar8035, Ar8035 Firmware, Csr8811 and 345 more | 2025-02-05 | N/A | 9.8 CRITICAL |
|
Memory corruption while parsing the ML IE due to invalid frame content.
|
|||||
| CVE-2024-21477 | 1 Qualcomm | 368 Aqt1000, Aqt1000 Firmware, Ar8035 and 365 more | 2025-01-15 | N/A | 7.5 HIGH |
|
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.
|
|||||
| CVE-2024-21463 | 1 Qualcomm | 218 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 215 more | 2025-01-13 | N/A | 7.3 HIGH |
|
Memory corruption while processing Codec2 during v13k decoder pitch synthesis.
|
|||||
| CVE-2024-33043 | 1 Qualcomm | 406 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 403 more | 2024-12-20 | N/A | 5.5 MEDIUM |
|
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
|
|||||
| CVE-2024-33063 | 1 Qualcomm | 248 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 245 more | 2024-12-12 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.
|
|||||
| CVE-2024-33056 | 1 Qualcomm | 658 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 655 more | 2024-12-12 | N/A | 8.4 HIGH |
|
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
|
|||||
| CVE-2024-33012 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
|
|||||
| CVE-2024-33013 | 1 Qualcomm | 340 Ar8035, Ar8035 Firmware, Csr8811 and 337 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
|
|||||
| CVE-2024-33011 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
|
|||||
| CVE-2024-33010 | 1 Qualcomm | 496 Ar8035, Ar8035 Firmware, Ar9380 and 493 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
|
|||||
| CVE-2024-23384 | 1 Qualcomm | 208 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 205 more | 2024-11-26 | N/A | 8.4 HIGH |
|
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.
|
|||||
| CVE-2024-23382 | 1 Qualcomm | 208 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 205 more | 2024-11-26 | N/A | 8.4 HIGH |
|
Memory corruption while processing graphics kernel driver request to create DMA fence.
|
|||||
| CVE-2024-23356 | 1 Qualcomm | 420 Aqt1000, Aqt1000 Firmware, Ar8031 and 417 more | 2024-11-26 | N/A | 7.8 HIGH |
|
Memory corruption during session sign renewal request calls in HLOS.
|
|||||
| CVE-2024-23357 | 1 Qualcomm | 484 215 Mobile Platform, 215 Mobile Platform Firmware, Apq8017 and 481 more | 2024-11-25 | N/A | 6.2 MEDIUM |
|
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
|
|||||
| CVE-2024-23380 | 1 Qualcomm | 212 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 209 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while handling user packets during VBO bind operation.
|
|||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
|
|||||
| CVE-2024-23372 | 1 Qualcomm | 222 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 219 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.
|
|||||
| CVE-2024-23368 | 1 Qualcomm | 686 Apq8064au, Apq8064au Firmware, Aqt1000 and 683 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption when allocating and accessing an entry in an SMEM partition.
|
|||||
| CVE-2024-21469 | 1 Qualcomm | 448 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 445 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
|
|||||
| CVE-2024-21465 | 1 Qualcomm | 518 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 515 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption while processing key blob passed by the user.
|
|||||
| CVE-2024-21462 | 1 Qualcomm | 622 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 619 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Transient DOS while loading the TA ELF file.
|
|||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
|
|||||
| CVE-2024-33014 | 1 Qualcomm | 650 315 5g Iot Modem, 315 5g Iot Modem Firmware, 860 Mobile Platform and 647 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing ESP IE from beacon/probe response frame.
|
|||||
| CVE-2024-33015 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Csr8811 and 387 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
|
|||||
| CVE-2024-33025 | 1 Qualcomm | 338 Csr8811, Csr8811 Firmware, Fastconnect 6800 and 335 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
|
|||||
| CVE-2024-33024 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Csr8811 and 359 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
|
|||||
| CVE-2024-33018 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csr8811 and 299 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
|
|||||
| CVE-2024-33026 | 1 Qualcomm | 330 Ar8035, Ar8035 Firmware, Csr8811 and 327 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
|
|||||
| CVE-2024-33023 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Csra6620 and 311 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
|
|||||
| CVE-2024-33020 | 1 Qualcomm | 196 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 193 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing TID-to-link mapping IE elements.
|
|||||
| CVE-2024-33019 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the received TID-to-link mapping action frame.
|
|||||
| CVE-2024-33034 | 1 Qualcomm | 210 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 207 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
|
|||||