Total
320 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-33014 | 1 Qualcomm | 74 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 71 more | 2024-11-21 | N/A | 7.6 HIGH |
|
Information disclosure in Core services while processing a Diag command.
|
|||||
| CVE-2023-28574 | 1 Qualcomm | 156 Ar8035, Ar8035 Firmware, Qam8255p and 153 more | 2024-11-21 | N/A | 9.0 CRITICAL |
|
Memory corruption in core services when Diag handler receives a command to configure event listeners.
|
|||||
| CVE-2023-24853 | 1 Qualcomm | 226 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 223 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption in HLOS while registering for key provisioning notify.
|
|||||
| CVE-2023-22382 | 1 Qualcomm | 58 Apq8064au, Apq8064au Firmware, Msm8996au and 55 more | 2024-11-21 | N/A | 7.4 HIGH |
|
Weak configuration in Automotive while VM is processing a listener request from TEE.
|
|||||
| CVE-2023-21672 | 1 Qualcomm | 114 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 111 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.
|
|||||
| CVE-2023-21670 | 1 Qualcomm | 364 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 361 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
|
|||||
| CVE-2023-21659 | 1 Qualcomm | 540 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 537 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing frames with missing header fields.
|
|||||
| CVE-2023-21658 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Ar9380 and 299 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
|
|||||
| CVE-2023-21657 | 1 Qualcomm | 252 Csra6620, Csra6620 Firmware, Csra6640 and 249 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memoru corruption in Audio when ADSP sends input during record use case.
|
|||||
| CVE-2023-21656 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Csra6620 and 253 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
|
|||||
| CVE-2022-40533 | 1 Qualcomm | 220 Csra6620, Csra6620 Firmware, Csra6640 and 217 more | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
|
|||||
| CVE-2022-40529 | 1 Qualcomm | 392 Aqt1000, Aqt1000 Firmware, Ar8031 and 389 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Memory corruption due to improper access control in kernel while processing a mapping request from root process.
|
|||||
| CVE-2022-40523 | 1 Qualcomm | 370 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 367 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Information disclosure in Kernel due to indirect branch misprediction.
|
|||||
| CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to double free in Core while mapping HLOS address to the list.
|
|||||
| CVE-2022-33307 | 1 Qualcomm | 220 Aqt1000, Aqt1000 Firmware, Qam8255p and 217 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
|
|||||
| CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-11-21 | N/A | 7.1 HIGH |
|
information disclosure due to cryptographic issue in Core during RPMB read request.
|
|||||
| CVE-2024-33014 | 1 Qualcomm | 650 315 5g Iot Modem, 315 5g Iot Modem Firmware, 860 Mobile Platform and 647 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing ESP IE from beacon/probe response frame.
|
|||||
| CVE-2024-33015 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Csr8811 and 387 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
|
|||||
| CVE-2024-33025 | 1 Qualcomm | 338 Csr8811, Csr8811 Firmware, Fastconnect 6800 and 335 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
|
|||||
| CVE-2024-33024 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Csr8811 and 359 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
|
|||||
| CVE-2024-33018 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csr8811 and 299 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
|
|||||
| CVE-2024-33026 | 1 Qualcomm | 330 Ar8035, Ar8035 Firmware, Csr8811 and 327 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
|
|||||
| CVE-2024-33023 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Csra6620 and 311 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
|
|||||
| CVE-2024-33022 | 1 Qualcomm | 248 Ar8035, Ar8035 Firmware, Csra6620 and 245 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption while allocating memory in HGSL driver.
|
|||||
| CVE-2024-33021 | 1 Qualcomm | 276 Ar8035, Ar8035 Firmware, Csra6620 and 273 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL call to set metainfo.
|
|||||
| CVE-2024-33020 | 1 Qualcomm | 196 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 193 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing TID-to-link mapping IE elements.
|
|||||
| CVE-2024-33019 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the received TID-to-link mapping action frame.
|
|||||
| CVE-2024-33028 | 1 Qualcomm | 276 Ar8035, Ar8035 Firmware, Csra6620 and 273 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
|
|||||
| CVE-2024-33034 | 1 Qualcomm | 210 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 207 more | 2024-11-20 | N/A | 7.8 HIGH |
|
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
|
|||||
| CVE-2024-38408 | 1 Qualcomm | 470 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 467 more | 2024-11-08 | N/A | 9.1 CRITICAL |
|
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
|
|||||
| CVE-2024-33068 | 1 Qualcomm | 244 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 241 more | 2024-11-07 | N/A | 6.5 MEDIUM |
|
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
|
|||||
| CVE-2024-38403 | 1 Qualcomm | 156 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 153 more | 2024-11-07 | N/A | 6.5 MEDIUM |
|
Transient DOS while parsing BTM ML IE when per STA profile is not included.
|
|||||
| CVE-2024-38405 | 1 Qualcomm | 198 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 195 more | 2024-11-07 | N/A | 6.5 MEDIUM |
|
Transient DOS while processing the CU information from RNR IE.
|
|||||
| CVE-2024-38424 | 1 Qualcomm | 238 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 235 more | 2024-11-07 | N/A | 7.8 HIGH |
|
Memory corruption during GNSS HAL process initialization.
|
|||||
| CVE-2024-38422 | 1 Qualcomm | 536 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 533 more | 2024-11-07 | N/A | 7.8 HIGH |
|
Memory corruption while processing voice packet with arbitrary data received from ADSP.
|
|||||
| CVE-2024-38421 | 1 Qualcomm | 154 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 7800 and 151 more | 2024-11-07 | N/A | 7.8 HIGH |
|
Memory corruption while processing GPU commands.
|
|||||
| CVE-2024-38419 | 1 Qualcomm | 296 Ar8035, Ar8035 Firmware, Csra6620 and 293 more | 2024-11-07 | N/A | 7.8 HIGH |
|
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
|
|||||
| CVE-2024-23378 | 1 Qualcomm | 36 Qam8255p, Qam8255p Firmware, Qam8650p and 33 more | 2024-10-16 | N/A | 6.7 MEDIUM |
|
Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.
|
|||||
| CVE-2024-23379 | 1 Qualcomm | 68 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 65 more | 2024-10-16 | N/A | 6.7 MEDIUM |
|
Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.
|
|||||
| CVE-2024-38399 | 1 Qualcomm | 80 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 77 more | 2024-10-16 | N/A | 7.8 HIGH |
|
Memory corruption while processing user packets to generate page faults.
|
|||||