Total
35 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-21449 | 1 Qualcomm | 370 315 5g Iot, 315 5g Iot Firmware, Apq8017 and 367 more | 2026-02-10 | N/A | 7.5 HIGH |
|
Transient DOS may occur while processing malformed length field in SSID IEs.
|
|||||
| CVE-2025-27042 | 1 Qualcomm | 688 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 685 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing video packets received from video firmware.
|
|||||
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling beacon frames with invalid IE header length.
|
|||||
| CVE-2023-28541 | 1 Qualcomm | 398 Aqt1000, Aqt1000 Firmware, Ar8031 and 395 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
|
|||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
|
|||||
| CVE-2024-43057 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, C-v2x 9150 and 303 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing command in Glink linux.
|
|||||
| CVE-2024-33050 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
|
|||||
| CVE-2025-27061 | 1 Qualcomm | 688 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 685 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
|
|||||
| CVE-2023-43552 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2025-08-11 | N/A | 9.8 CRITICAL |
|
Memory corruption while processing MBSSID beacon containing several subelement IE.
|
|||||
| CVE-2023-43537 | 1 Qualcomm | 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more | 2025-08-11 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling T2LM Action Frame in WLAN Host.
|
|||||
| CVE-2023-22387 | 1 Qualcomm | 542 205, 205 Firmware, 215 and 539 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
|
|||||
| CVE-2024-33057 | 1 Qualcomm | 342 Ar8035, Ar8035 Firmware, Csr8811 and 339 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
|
|||||
| CVE-2025-21446 | 1 Qualcomm | 480 Ar8035, Ar8035 Firmware, Ar9380 and 477 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
|
|||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory corruption during management frame processing due to mismatch in T2LM info element.
|
|||||
| CVE-2023-28578 | 1 Qualcomm | 680 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 677 more | 2025-08-11 | N/A | 9.3 CRITICAL |
|
Memory corruption in Core Services while executing the command for removing a single event listener.
|
|||||
| CVE-2023-24854 | 1 Qualcomm | 326 215, 215 Firmware, Ar8035 and 323 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.
|
|||||
| CVE-2023-24851 | 1 Qualcomm | 382 Ar8035, Ar8035 Firmware, Csr8811 and 379 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
|
|||||
| CVE-2025-21454 | 1 Qualcomm | 384 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 381 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing received beacon frame.
|
|||||
| CVE-2024-33048 | 1 Qualcomm | 378 Ar8035, Ar8035 Firmware, Csr8811 and 375 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
|
|||||
| CVE-2023-22386 | 1 Qualcomm | 402 215, 215 Firmware, Ar8035 and 399 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.
|
|||||
| CVE-2024-45571 | 1 Qualcomm | 300 Ar8035, Ar8035 Firmware, Csr8811 and 297 more | 2025-02-05 | N/A | 7.8 HIGH |
|
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.
|
|||||
| CVE-2024-45569 | 1 Qualcomm | 348 Ar8035, Ar8035 Firmware, Csr8811 and 345 more | 2025-02-05 | N/A | 9.8 CRITICAL |
|
Memory corruption while parsing the ML IE due to invalid frame content.
|
|||||
| CVE-2024-21477 | 1 Qualcomm | 368 Aqt1000, Aqt1000 Firmware, Ar8035 and 365 more | 2025-01-15 | N/A | 7.5 HIGH |
|
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.
|
|||||
| CVE-2024-21473 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Ar9380 and 251 more | 2025-01-13 | N/A | 9.8 CRITICAL |
|
Memory corruption while redirecting log file to any file location with any file name.
|
|||||
| CVE-2023-43549 | 1 Qualcomm | 278 Ar8035, Ar8035 Firmware, Csr8811 and 275 more | 2025-01-10 | N/A | 8.4 HIGH |
|
Memory corruption while processing TPC target power table in FTM TPC.
|
|||||
| CVE-2023-43539 | 1 Qualcomm | 274 Ar8035, Ar8035 Firmware, Csr8811 and 271 more | 2025-01-10 | N/A | 7.5 HIGH |
|
Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame.
|
|||||
| CVE-2023-33105 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Ar9380 and 295 more | 2025-01-10 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.
|
|||||
| CVE-2024-23363 | 1 Qualcomm | 250 Ar8035, Ar8035 Firmware, Csr8811 and 247 more | 2025-01-09 | N/A | 7.5 HIGH |
|
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.
|
|||||
| CVE-2023-43553 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Csr8811 and 259 more | 2025-01-09 | N/A | 9.8 CRITICAL |
|
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.
|
|||||
| CVE-2023-33016 | 1 Qualcomm | 132 Csr8811, Csr8811 Firmware, Fastconnect 6900 and 129 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN firmware while parsing MLO (multi-link operation).
|
|||||
| CVE-2023-33015 | 1 Qualcomm | 388 315 5g, 315 5g Firmware, Aqt1000 and 385 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
|
|||||
| CVE-2023-28573 | 1 Qualcomm | 398 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 395 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while parsing WMI command parameters.
|
|||||
| CVE-2023-28567 | 1 Qualcomm | 582 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 579 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while handling command through WMI interfaces.
|
|||||
| CVE-2023-28565 | 1 Qualcomm | 588 9205 Lte, 9205 Lte Firmware, Apq8017 and 585 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
|
|||||
| CVE-2023-28564 | 1 Qualcomm | 498 Aqt1000, Aqt1000 Firmware, Ar8031 and 495 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
|
|||||