Total
900 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-43539 | 1 Qualcomm | 274 Ar8035, Ar8035 Firmware, Csr8811 and 271 more | 2025-01-10 | N/A | 7.5 HIGH |
|
Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame.
|
|||||
| CVE-2023-33105 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Ar9380 and 295 more | 2025-01-10 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.
|
|||||
| CVE-2024-23363 | 1 Qualcomm | 250 Ar8035, Ar8035 Firmware, Csr8811 and 247 more | 2025-01-09 | N/A | 7.5 HIGH |
|
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.
|
|||||
| CVE-2023-43553 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Csr8811 and 259 more | 2025-01-09 | N/A | 9.8 CRITICAL |
|
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.
|
|||||
| CVE-2024-33043 | 1 Qualcomm | 406 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 403 more | 2024-12-20 | N/A | 5.5 MEDIUM |
|
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
|
|||||
| CVE-2024-43052 | 1 Qualcomm | 182 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 179 more | 2024-12-12 | N/A | 7.8 HIGH |
|
Memory corruption while processing API calls to NPU with invalid input.
|
|||||
| CVE-2024-43050 | 1 Qualcomm | 108 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 105 more | 2024-12-12 | N/A | 7.8 HIGH |
|
Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.
|
|||||
| CVE-2024-33056 | 1 Qualcomm | 658 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 655 more | 2024-12-12 | N/A | 8.4 HIGH |
|
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
|
|||||
| CVE-2024-33053 | 1 Qualcomm | 112 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6200 and 109 more | 2024-12-12 | N/A | 6.7 MEDIUM |
|
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.
|
|||||
| CVE-2024-33044 | 1 Qualcomm | 422 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 419 more | 2024-12-12 | N/A | 8.4 HIGH |
|
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
|
|||||
| CVE-2024-33037 | 1 Qualcomm | 102 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 99 more | 2024-12-11 | N/A | 6.1 MEDIUM |
|
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.
|
|||||
| CVE-2024-33036 | 1 Qualcomm | 104 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 101 more | 2024-12-11 | N/A | 6.7 MEDIUM |
|
Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.
|
|||||
| CVE-2024-33012 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
|
|||||
| CVE-2024-33013 | 1 Qualcomm | 340 Ar8035, Ar8035 Firmware, Csr8811 and 337 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
|
|||||
| CVE-2024-33011 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
|
|||||
| CVE-2024-33010 | 1 Qualcomm | 496 Ar8035, Ar8035 Firmware, Ar9380 and 493 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
|
|||||
| CVE-2024-23352 | 1 Qualcomm | 210 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 207 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.
|
|||||
| CVE-2024-21479 | 1 Qualcomm | 190 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 187 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS during music playback of ALAC content.
|
|||||
| CVE-2024-21467 | 1 Qualcomm | 258 Csr8811, Csr8811 Firmware, Fastconnect 6800 and 255 more | 2024-11-26 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling beacon probe frame during scan entry generation in client side.
|
|||||
| CVE-2024-23353 | 1 Qualcomm | 498 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
|
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
|
|||||
| CVE-2021-30299 | 1 Qualcomm | 168 Apq8096au, Apq8096au Firmware, Ar8031 and 165 more | 2024-11-25 | N/A | 6.7 MEDIUM |
|
Possible out of bound access in audio module due to lack of validation of user provided input.
|
|||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
|
|||||
| CVE-2024-23368 | 1 Qualcomm | 686 Apq8064au, Apq8064au Firmware, Aqt1000 and 683 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption when allocating and accessing an entry in an SMEM partition.
|
|||||
| CVE-2024-21482 | 1 Qualcomm | 138 Csr8811, Csr8811 Firmware, Immersive Home 214 Platform and 135 more | 2024-11-21 | N/A | 6.8 MEDIUM |
|
Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses the authentication of the kernel/rootfs image.
|
|||||
| CVE-2024-21469 | 1 Qualcomm | 448 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 445 more | 2024-11-21 | N/A | 7.3 HIGH |
|
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
|
|||||
| CVE-2024-21465 | 1 Qualcomm | 518 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 515 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption while processing key blob passed by the user.
|
|||||
| CVE-2024-21462 | 1 Qualcomm | 622 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 619 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Transient DOS while loading the TA ELF file.
|
|||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
|
|||||
| CVE-2024-21458 | 1 Qualcomm | 222 Ar8035, Ar8035 Firmware, Csr8811 and 219 more | 2024-11-21 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling SA query action frame.
|
|||||
| CVE-2024-21457 | 1 Qualcomm | 222 Ar8035, Ar8035 Firmware, Csr8811 and 219 more | 2024-11-21 | N/A | 6.5 MEDIUM |
|
INformation disclosure while handling Multi-link IE in beacon frame.
|
|||||
| CVE-2023-33116 | 1 Qualcomm | 204 Ar8035, Ar8035 Firmware, Ar9380 and 201 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.
|
|||||
| CVE-2023-33097 | 1 Qualcomm | 244 Ar8035, Ar8035 Firmware, Csr8811 and 241 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing a FTMR frame.
|
|||||
| CVE-2023-33083 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Ar9380 and 227 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption in WLAN Host while processing RRM beacon on the AP.
|
|||||
| CVE-2023-33082 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Ar9380 and 227 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.
|
|||||
| CVE-2023-33081 | 1 Qualcomm | 298 Aqt1000, Aqt1000 Firmware, Ar8035 and 295 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
|
|||||
| CVE-2023-33076 | 1 Qualcomm | 302 Aqt1000, Aqt1000 Firmware, Ar8035 and 299 more | 2024-11-21 | N/A | 5.9 MEDIUM |
|
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
|
|||||
| CVE-2023-33061 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Csr8811 and 227 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.
|
|||||
| CVE-2023-33056 | 1 Qualcomm | 232 Ar8035, Ar8035 Firmware, Csr8811 and 229 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.
|
|||||
| CVE-2023-33048 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Csr8811 and 227 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing t2lm buffers.
|
|||||
| CVE-2023-33045 | 1 Qualcomm | 258 Ar8035, Ar8035 Firmware, Csr8811 and 255 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
|
|||||