Total
550 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-33238 | 1 Qualcomm | 568 Apq8009, Apq8009 Firmware, Apq8017 and 565 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-40520 | 1 Qualcomm | 294 Apq8064au, Apq8064au Firmware, Apq8096au and 291 more | 2025-04-09 | N/A | 8.4 HIGH |
|
Memory corruption due to stack-based buffer overflow in Core
|
|||||
| CVE-2022-33266 | 1 Qualcomm | 244 Apq8009, Apq8009 Firmware, Apq8009w and 241 more | 2025-04-09 | N/A | 5.9 MEDIUM |
|
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
|
|||||
| CVE-2022-25746 | 1 Qualcomm | 196 Aqt1000, Aqt1000 Firmware, Ar8035 and 193 more | 2025-04-09 | N/A | 8.1 HIGH |
|
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
|
|||||
| CVE-2022-22079 | 1 Qualcomm | 92 Apq8009, Apq8009 Firmware, Apq8009w and 89 more | 2025-04-09 | N/A | 4.6 MEDIUM |
|
Denial of service while processing fastboot flash command on mmc due to buffer over read
|
|||||
| CVE-2022-40519 | 1 Qualcomm | 386 Aqt1000, Aqt1000 Firmware, Ar8031 and 383 more | 2025-04-09 | N/A | 6.8 MEDIUM |
|
Information disclosure due to buffer overread in Core
|
|||||
| CVE-2022-40518 | 1 Qualcomm | 320 Aqt1000, Aqt1000 Firmware, Ar8031 and 317 more | 2025-04-09 | N/A | 6.8 MEDIUM |
|
Information disclosure due to buffer overread in Core
|
|||||
| CVE-2022-40517 | 1 Qualcomm | 362 Aqt1000, Aqt1000 Firmware, Ar8031 and 359 more | 2025-04-09 | N/A | 8.4 HIGH |
|
Memory corruption in core due to stack-based buffer overflow
|
|||||
| CVE-2022-40516 | 1 Qualcomm | 368 Aqt1000, Aqt1000 Firmware, Ar8031 and 365 more | 2025-04-09 | N/A | 8.4 HIGH |
|
Memory corruption in Core due to stack-based buffer overflow.
|
|||||
| CVE-2022-33300 | 1 Qualcomm | 102 Qam8295p, Qam8295p Firmware, Qca6174a and 99 more | 2025-04-09 | N/A | 8.4 HIGH |
|
Memory corruption in Automotive Android OS due to improper input validation.
|
|||||
| CVE-2022-33299 | 1 Qualcomm | 88 Apq8017, Apq8017 Firmware, Apq8096au and 85 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.
|
|||||
| CVE-2022-33290 | 1 Qualcomm | 92 Apq8017, Apq8017 Firmware, Apq8096au and 89 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed.
|
|||||
| CVE-2022-33286 | 1 Qualcomm | 562 Apq8009, Apq8009 Firmware, Apq8017 and 559 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
|
|||||
| CVE-2022-33285 | 1 Qualcomm | 556 Apq8009, Apq8009 Firmware, Apq8017 and 553 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
|
|||||
| CVE-2024-43060 | 1 Qualcomm | 82 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 79 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.
|
|||||
| CVE-2024-43061 | 1 Qualcomm | 60 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 57 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.
|
|||||
| CVE-2024-49838 | 1 Qualcomm | 338 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 335 more | 2025-02-05 | N/A | 8.2 HIGH |
|
Information disclosure while parsing the OCI IE with invalid length.
|
|||||
| CVE-2024-38416 | 1 Qualcomm | 144 Ar8035, Ar8035 Firmware, C-v2x 9150 and 141 more | 2025-02-05 | N/A | 6.1 MEDIUM |
|
Information disclosure during audio playback.
|
|||||
| CVE-2024-38417 | 1 Qualcomm | 112 Ar8035, Ar8035 Firmware, C-v2x 9150 and 109 more | 2025-02-05 | N/A | 6.1 MEDIUM |
|
Information disclosure while processing IO control commands.
|
|||||
| CVE-2024-38420 | 1 Qualcomm | 320 Aqt1000, Aqt1000 Firmware, Ar8035 and 317 more | 2025-02-05 | N/A | 8.8 HIGH |
|
Memory corruption while configuring a Hypervisor based input virtual device.
|
|||||
| CVE-2023-43538 | 1 Qualcomm | 274 Aqt1000, Aqt1000 Firmware, Ar8035 and 271 more | 2025-01-27 | N/A | 9.3 CRITICAL |
|
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
|
|||||
| CVE-2023-43524 | 1 Qualcomm | 114 Ar8035, Ar8035 Firmware, Fastconnect 6800 and 111 more | 2025-01-15 | N/A | 6.7 MEDIUM |
|
Memory corruption when the bandpass filter order received from AHAL is not within the expected range.
|
|||||
| CVE-2024-43050 | 1 Qualcomm | 108 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 105 more | 2024-12-12 | N/A | 7.8 HIGH |
|
Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.
|
|||||
| CVE-2024-33044 | 1 Qualcomm | 422 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 419 more | 2024-12-12 | N/A | 8.4 HIGH |
|
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
|
|||||
| CVE-2024-33012 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
|
|||||
| CVE-2024-33013 | 1 Qualcomm | 340 Ar8035, Ar8035 Firmware, Csr8811 and 337 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
|
|||||
| CVE-2024-33011 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
|
|||||
| CVE-2024-33010 | 1 Qualcomm | 496 Ar8035, Ar8035 Firmware, Ar9380 and 493 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
|
|||||
| CVE-2024-21479 | 1 Qualcomm | 190 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 187 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS during music playback of ALAC content.
|
|||||
| CVE-2024-23353 | 1 Qualcomm | 498 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
|
|||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
|
|||||
| CVE-2024-23368 | 1 Qualcomm | 686 Apq8064au, Apq8064au Firmware, Aqt1000 and 683 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption when allocating and accessing an entry in an SMEM partition.
|
|||||
| CVE-2024-21469 | 1 Qualcomm | 448 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 445 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
|
|||||
| CVE-2024-21465 | 1 Qualcomm | 518 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 515 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption while processing key blob passed by the user.
|
|||||
| CVE-2024-21462 | 1 Qualcomm | 622 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 619 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Transient DOS while loading the TA ELF file.
|
|||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
|
|||||
| CVE-2023-33076 | 1 Qualcomm | 302 Aqt1000, Aqt1000 Firmware, Ar8035 and 299 more | 2024-11-21 | N/A | 5.9 MEDIUM |
|
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
|
|||||
| CVE-2023-33040 | 1 Qualcomm | 288 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 285 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in Data Modem during DTLS handshake.
|
|||||
| CVE-2023-33038 | 1 Qualcomm | 288 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 285 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption while receiving a message in Bus Socket Transport Server.
|
|||||
| CVE-2023-33036 | 1 Qualcomm | 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.
|
|||||