Total
430 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47379 | 1 Qualcomm | 356 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Ar8031 and 353 more | 2026-03-05 | N/A | 7.8 HIGH |
|
Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources.
|
|||||
| CVE-2025-47384 | 1 Qualcomm | 86 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Fastconnect 6200 and 83 more | 2026-03-05 | N/A | 6.5 MEDIUM |
|
Transient DOS when MAC configures config id greater than supported maximum value.
|
|||||
| CVE-2025-47386 | 1 Qualcomm | 340 Ar8031, Ar8031 Firmware, Ar8035 and 337 more | 2026-03-05 | N/A | 7.8 HIGH |
|
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
|
|||||
| CVE-2025-47383 | 1 Qualcomm | 412 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, 9206 Lte Modem and 409 more | 2026-03-04 | N/A | 7.2 HIGH |
|
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.
|
|||||
| CVE-2026-21385 | 1 Qualcomm | 474 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Apq8098 and 471 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory corruption while using alignments for memory allocation.
|
|||||
| CVE-2025-47375 | 1 Qualcomm | 338 Ar8031, Ar8031 Firmware, Ar8035 and 335 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory corruption while handling different IOCTL calls from the user-space simultaneously.
|
|||||
| CVE-2025-47376 | 1 Qualcomm | 340 Ar8031, Ar8031 Firmware, Ar8035 and 337 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.
|
|||||
| CVE-2025-21427 | 1 Qualcomm | 358 205 Mobile, 205 Mobile Firmware, 215 Mobile and 355 more | 2026-02-11 | N/A | 8.2 HIGH |
|
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
|
|||||
| CVE-2025-47320 | 1 Qualcomm | 426 9206 Lte Modem, 9206 Lte Modem Firmware, Apq8017 and 423 more | 2026-02-10 | N/A | 7.8 HIGH |
|
Memory corruption while processing MFC channel configuration during music playback.
|
|||||
| CVE-2025-21449 | 1 Qualcomm | 370 315 5g Iot, 315 5g Iot Firmware, Apq8017 and 367 more | 2026-02-10 | N/A | 7.5 HIGH |
|
Transient DOS may occur while processing malformed length field in SSID IEs.
|
|||||
| CVE-2025-27063 | 1 Qualcomm | 222 Csra6620, Csra6620 Firmware, Csra6640 and 219 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption during video playback when video session open fails with time out error.
|
|||||
| CVE-2025-47323 | 1 Qualcomm | 356 Ar8035, Ar8035 Firmware, Csra6620 and 353 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption while routing GPR packets between user and root when handling large data packet.
|
|||||
| CVE-2025-47330 | 1 Qualcomm | 446 Ar8031, Ar8031 Firmware, Ar8035 and 443 more | 2026-01-28 | N/A | 5.5 MEDIUM |
|
Transient DOS while parsing video packets received from the video firmware.
|
|||||
| CVE-2025-47331 | 1 Qualcomm | 598 Ar8031, Ar8031 Firmware, Ar8035 and 595 more | 2026-01-28 | N/A | 6.1 MEDIUM |
|
Information disclosure while processing a firmware event.
|
|||||
| CVE-2025-47333 | 1 Qualcomm | 478 Aqt1000, Aqt1000 Firmware, Ar8031 and 475 more | 2026-01-28 | N/A | 6.6 MEDIUM |
|
Memory corruption while handling buffer mapping operations in the cryptographic driver.
|
|||||
| CVE-2025-47348 | 1 Qualcomm | 408 Aqt1000, Aqt1000 Firmware, Ar8035 and 405 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption while processing identity credential operations in the trusted application.
|
|||||
| CVE-2025-47334 | 1 Qualcomm | 292 Csra6620, Csra6620 Firmware, Csra6640 and 289 more | 2026-01-27 | N/A | 6.7 MEDIUM |
|
Memory corruption while processing shared command buffer packet between camera userspace and kernel.
|
|||||
| CVE-2025-47369 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Csra6620 and 347 more | 2026-01-27 | N/A | 5.5 MEDIUM |
|
Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.
|
|||||
| CVE-2025-21482 | 1 Qualcomm | 574 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 571 more | 2025-12-02 | N/A | 7.1 HIGH |
|
Cryptographic issue while performing RSA PKCS padding decoding.
|
|||||
| CVE-2024-53015 | 1 Qualcomm | 182 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 179 more | 2025-11-28 | N/A | 6.6 MEDIUM |
|
Memory corruption while processing IOCTL command to handle buffers associated with a session.
|
|||||
| CVE-2024-53010 | 1 Qualcomm | 386 Aqt1000, Aqt1000 Firmware, Ar8035 and 383 more | 2025-11-28 | N/A | 7.8 HIGH |
|
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
|
|||||
| CVE-2024-53020 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
|
|||||
| CVE-2025-21483 | 1 Qualcomm | 454 Apq8017, Apq8017 Firmware, Apq8064au and 451 more | 2025-11-28 | N/A | 9.8 CRITICAL |
|
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
|
|||||
| CVE-2025-27034 | 1 Qualcomm | 226 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 223 more | 2025-11-28 | N/A | 9.8 CRITICAL |
|
Memory corruption while selecting the PLMN from SOR failed list.
|
|||||
| CVE-2025-21465 | 1 Qualcomm | 698 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 695 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while processing the hash segment in an MBN file.
|
|||||
| CVE-2025-21464 | 1 Qualcomm | 684 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 681 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while reading data from an image using specified offset and size parameters.
|
|||||
| CVE-2024-53026 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
|
|||||
| CVE-2024-53021 | 1 Qualcomm | 450 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 447 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while processing goodbye RTCP packet from network.
|
|||||
| CVE-2025-21487 | 1 Qualcomm | 454 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 451 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
|
|||||
| CVE-2025-47318 | 1 Qualcomm | 406 Apq8017, Apq8017 Firmware, Apq8064au and 403 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the EPTM test control message to get the test pattern.
|
|||||
| CVE-2025-27062 | 1 Qualcomm | 306 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8064au and 303 more | 2025-11-28 | N/A | 7.8 HIGH |
|
Memory corruption while handling client exceptions, allowing unauthorized channel access.
|
|||||
| CVE-2025-27066 | 1 Qualcomm | 744 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 741 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while processing an ANQP message.
|
|||||
| CVE-2025-27053 | 1 Qualcomm | 638 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 635 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption during PlayReady APP usecase while processing TA commands.
|
|||||
| CVE-2025-27054 | 1 Qualcomm | 598 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 595 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while processing a malformed license file during reboot.
|
|||||
| CVE-2025-47370 | 1 Qualcomm | 272 Ar8035, Ar8035 Firmware, Csrb31024 and 269 more | 2025-11-05 | N/A | 6.5 MEDIUM |
|
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
|
|||||
| CVE-2025-21479 | 1 Qualcomm | 150 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 147 more | 2025-10-28 | N/A | 8.6 HIGH |
|
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
|
|||||
| CVE-2025-21480 | 1 Qualcomm | 152 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 149 more | 2025-10-28 | N/A | 8.6 HIGH |
|
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
|
|||||
| CVE-2023-33106 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, Csra6620 and 303 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
|
|||||
| CVE-2023-33107 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 481 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
|
|||||
| CVE-2022-22071 | 1 Qualcomm | 180 Apq8053, Apq8053 Firmware, Ar8031 and 177 more | 2025-10-28 | 7.2 HIGH | 8.4 HIGH |
|
Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
|
|||||