Total
454 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-25695 | 1 Qualcomm | 394 Apq8009, Apq8009 Firmware, Apq8009w and 391 more | 2025-04-22 | N/A | 8.4 HIGH |
|
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-25692 | 1 Qualcomm | 124 Ar8035, Ar8035 Firmware, Qca6390 and 121 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
|
|||||
| CVE-2022-25685 | 1 Qualcomm | 250 Apq8009, Apq8009 Firmware, Apq8017 and 247 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
|
|||||
| CVE-2022-25682 | 1 Qualcomm | 408 Apq8009, Apq8009 Firmware, Apq8009w and 405 more | 2025-04-22 | N/A | 8.4 HIGH |
|
Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-25679 | 1 Qualcomm | 134 Aqt1000, Aqt1000 Firmware, Qca6390 and 131 more | 2025-04-22 | N/A | 6.2 MEDIUM |
|
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
|
|||||
| CVE-2022-25677 | 1 Qualcomm | 286 Apq8096au, Apq8096au Firmware, Aqt1000 and 283 more | 2025-04-22 | N/A | 6.7 MEDIUM |
|
Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-25676 | 1 Qualcomm | 214 Aqt1000, Aqt1000 Firmware, Qam8295p and 211 more | 2025-04-22 | N/A | 6.8 MEDIUM |
|
Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
|
|||||
| CVE-2022-33268 | 1 Qualcomm | 190 Apq8009, Apq8009 Firmware, Apq8017 and 187 more | 2025-04-22 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in Bluetooth HOST while pairing and connecting A2DP. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-33238 | 1 Qualcomm | 568 Apq8009, Apq8009 Firmware, Apq8017 and 565 more | 2025-04-22 | N/A | 7.5 HIGH |
|
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
|
|||||
| CVE-2022-25721 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Mdm9150 and 87 more | 2025-04-09 | N/A | 6.7 MEDIUM |
|
Memory corruption in video driver due to type confusion error during video playback
|
|||||
| CVE-2022-33266 | 1 Qualcomm | 244 Apq8009, Apq8009 Firmware, Apq8009w and 241 more | 2025-04-09 | N/A | 5.9 MEDIUM |
|
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
|
|||||
| CVE-2022-25717 | 1 Qualcomm | 90 Apq8096au, Apq8096au Firmware, Aqt1000 and 87 more | 2025-04-09 | N/A | 6.7 MEDIUM |
|
Memory corruption in display due to double free while allocating frame buffer memory
|
|||||
| CVE-2022-25715 | 1 Qualcomm | 64 Aqt1000, Aqt1000 Firmware, Mdm9150 and 61 more | 2025-04-09 | N/A | 6.7 MEDIUM |
|
Memory corruption in display driver due to incorrect type casting while accessing the fence structure fields
|
|||||
| CVE-2022-22088 | 1 Qualcomm | 300 Apq8009, Apq8009 Firmware, Apq8009w and 297 more | 2025-04-09 | N/A | 9.8 CRITICAL |
|
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
|
|||||
| CVE-2022-22079 | 1 Qualcomm | 92 Apq8009, Apq8009 Firmware, Apq8009w and 89 more | 2025-04-09 | N/A | 4.6 MEDIUM |
|
Denial of service while processing fastboot flash command on mmc due to buffer over read
|
|||||
| CVE-2022-33299 | 1 Qualcomm | 88 Apq8017, Apq8017 Firmware, Apq8096au and 85 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.
|
|||||
| CVE-2022-33290 | 1 Qualcomm | 92 Apq8017, Apq8017 Firmware, Apq8096au and 89 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed.
|
|||||
| CVE-2022-33286 | 1 Qualcomm | 562 Apq8009, Apq8009 Firmware, Apq8017 and 559 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
|
|||||
| CVE-2022-33285 | 1 Qualcomm | 556 Apq8009, Apq8009 Firmware, Apq8017 and 553 more | 2025-04-09 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
|
|||||
| CVE-2022-33255 | 1 Qualcomm | 184 Apq8009, Apq8009 Firmware, Ar8031 and 181 more | 2025-04-09 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.
|
|||||
| CVE-2024-45580 | 1 Qualcomm | 74 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 71 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.
|
|||||
| CVE-2024-38404 | 1 Qualcomm | 80 Ar8035, Ar8035 Firmware, Fastconnect 7800 and 77 more | 2025-02-05 | N/A | 7.5 HIGH |
|
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.
|
|||||
| CVE-2024-38416 | 1 Qualcomm | 144 Ar8035, Ar8035 Firmware, C-v2x 9150 and 141 more | 2025-02-05 | N/A | 6.1 MEDIUM |
|
Information disclosure during audio playback.
|
|||||
| CVE-2024-38417 | 1 Qualcomm | 112 Ar8035, Ar8035 Firmware, C-v2x 9150 and 109 more | 2025-02-05 | N/A | 6.1 MEDIUM |
|
Information disclosure while processing IO control commands.
|
|||||
| CVE-2024-38418 | 1 Qualcomm | 124 C-v2x 9150, C-v2x 9150 Firmware, Csrb31024 and 121 more | 2025-02-05 | N/A | 7.8 HIGH |
|
Memory corruption while parsing the memory map info in IOCTL calls.
|
|||||
| CVE-2024-33061 | 1 Qualcomm | 18 Qcs8550, Qcs8550 Firmware, Sw5100 and 15 more | 2025-01-10 | N/A | 6.8 MEDIUM |
|
Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.
|
|||||
| CVE-2024-33043 | 1 Qualcomm | 406 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 403 more | 2024-12-20 | N/A | 5.5 MEDIUM |
|
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
|
|||||
| CVE-2024-43052 | 1 Qualcomm | 182 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 179 more | 2024-12-12 | N/A | 7.8 HIGH |
|
Memory corruption while processing API calls to NPU with invalid input.
|
|||||
| CVE-2024-33053 | 1 Qualcomm | 112 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6200 and 109 more | 2024-12-12 | N/A | 6.7 MEDIUM |
|
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.
|
|||||
| CVE-2024-33044 | 1 Qualcomm | 422 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 419 more | 2024-12-12 | N/A | 8.4 HIGH |
|
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
|
|||||
| CVE-2024-33040 | 1 Qualcomm | 60 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 57 more | 2024-12-12 | N/A | 6.7 MEDIUM |
|
Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access.
|
|||||
| CVE-2024-33037 | 1 Qualcomm | 102 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 99 more | 2024-12-11 | N/A | 6.1 MEDIUM |
|
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.
|
|||||
| CVE-2024-33036 | 1 Qualcomm | 104 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 101 more | 2024-12-11 | N/A | 6.7 MEDIUM |
|
Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.
|
|||||
| CVE-2024-21479 | 1 Qualcomm | 190 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 187 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS during music playback of ALAC content.
|
|||||
| CVE-2024-23353 | 1 Qualcomm | 498 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
|
|||||
| CVE-2024-23357 | 1 Qualcomm | 484 215 Mobile Platform, 215 Mobile Platform Firmware, Apq8017 and 481 more | 2024-11-25 | N/A | 6.2 MEDIUM |
|
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
|
|||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
|
|||||
| CVE-2024-23368 | 1 Qualcomm | 686 Apq8064au, Apq8064au Firmware, Aqt1000 and 683 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption when allocating and accessing an entry in an SMEM partition.
|
|||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
|
|||||
| CVE-2023-33110 | 1 Qualcomm | 246 Snapdragon 425 Mobile Platform, Snapdragon 425 Mobile Platform Firmware, Snapdragon 427 Mobile Platform and 243 more | 2024-11-21 | N/A | 7.8 HIGH |
|
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.
|
|||||