Total
254 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-33055 | 1 Qualcomm | 304 Apq5053-aa, Apq5053-aa Firmware, Aqt1000 and 301 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Audio while invoking callback function in driver from ADSP.
|
|||||
| CVE-2023-28571 | 1 Qualcomm | 172 8098, 8098 Firmware, 8998 and 169 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
|
|||||
| CVE-2023-33044 | 1 Qualcomm | 180 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 177 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Data modem while handling TLB control messages from the Network.
|
|||||
| CVE-2023-33079 | 1 Qualcomm | 288 Apq5053-aa, Apq5053-aa Firmware, Ar8035 and 285 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Audio while running invalid audio recording from ADSP.
|
|||||
| CVE-2023-33059 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 515 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Audio while processing the VOC packet data from ADSP.
|
|||||
| CVE-2023-33018 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 523 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while using the UIM diag command to get the operators name.
|
|||||
| CVE-2023-33080 | 1 Qualcomm | 732 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 729 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
|
|||||
| CVE-2023-33042 | 1 Qualcomm | 148 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 145 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in Modem after RRC Setup message is received.
|
|||||
| CVE-2023-33027 | 1 Qualcomm | 656 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 653 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing rsn ies.
|
|||||
| CVE-2023-33054 | 1 Qualcomm | 336 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 333 more | 2025-08-11 | N/A | 9.1 CRITICAL |
|
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
|
|||||
| CVE-2023-33022 | 1 Qualcomm | 424 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 421 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in HLOS while invoking IOCTL calls from user-space.
|
|||||
| CVE-2023-33031 | 1 Qualcomm | 330 Apq5053-aa, Apq5053-aa Firmware, Apq8009 and 327 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.
|
|||||
| CVE-2023-33017 | 1 Qualcomm | 554 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 551 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
|
|||||
| CVE-2023-33026 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Ar9380 and 387 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing a NAN management frame.
|
|||||
| CVE-2023-33047 | 1 Qualcomm | 356 Ar8035, Ar8035 Firmware, Ar9380 and 353 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing no-inherit IES.
|
|||||
| CVE-2023-33081 | 1 Qualcomm | 298 Aqt1000, Aqt1000 Firmware, Ar8035 and 295 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
|
|||||
| CVE-2023-33045 | 1 Qualcomm | 258 Ar8035, Ar8035 Firmware, Csr8811 and 255 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
|
|||||
| CVE-2023-33024 | 1 Qualcomm | 142 8098, 8098 Firmware, 8998 and 139 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
Memory corruption while sending SMS from AP firmware.
|
|||||
| CVE-2023-28540 | 1 Qualcomm | 304 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 301 more | 2024-11-21 | N/A | 9.1 CRITICAL |
|
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
|
|||||
| CVE-2023-21670 | 1 Qualcomm | 364 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 361 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
|
|||||
| CVE-2023-21669 | 1 Qualcomm | 122 Aqt1000, Aqt1000 Firmware, Flight Rb5 5g Platform and 119 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.
|
|||||
| CVE-2023-21665 | 1 Qualcomm | 440 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 437 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics while importing a file.
|
|||||
| CVE-2023-21661 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Ar9380 and 227 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS while parsing WLAN beacon or probe-response frame.
|
|||||
| CVE-2023-21659 | 1 Qualcomm | 540 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 537 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing frames with missing header fields.
|
|||||
| CVE-2023-21658 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Ar9380 and 299 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
|
|||||
| CVE-2023-21657 | 1 Qualcomm | 252 Csra6620, Csra6620 Firmware, Csra6640 and 249 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memoru corruption in Audio when ADSP sends input during record use case.
|
|||||
| CVE-2023-21656 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Csra6620 and 253 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
|
|||||
| CVE-2022-40536 | 1 Qualcomm | 162 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 159 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.
|
|||||
| CVE-2022-40533 | 1 Qualcomm | 220 Csra6620, Csra6620 Firmware, Csra6640 and 217 more | 2024-11-21 | N/A | 6.2 MEDIUM |
|
Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
|
|||||
| CVE-2022-40532 | 1 Qualcomm | 706 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 703 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
|
|||||
| CVE-2022-40529 | 1 Qualcomm | 392 Aqt1000, Aqt1000 Firmware, Ar8031 and 389 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Memory corruption due to improper access control in kernel while processing a mapping request from root process.
|
|||||
| CVE-2022-40523 | 1 Qualcomm | 370 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 367 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Information disclosure in Kernel due to indirect branch misprediction.
|
|||||
| CVE-2022-40521 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 481 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper authorization in Modem
|
|||||
| CVE-2022-40508 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 133 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
|
|||||
| CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to double free in Core while mapping HLOS address to the list.
|
|||||
| CVE-2022-40504 | 1 Qualcomm | 378 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 375 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
|
|||||
| CVE-2022-40503 | 1 Qualcomm | 370 8905, 8905 Firmware, 8909 and 367 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
|
|||||
| CVE-2022-39853 | 2 Google, Qualcomm | 3 Android, Sm8150, Sm8250 | 2024-11-21 | N/A | 4.4 MEDIUM |
|
A use after free vulnerability in perf-mgr driver prior to SMR Oct-2022 Release 1 allows attacker to cause memory access fault.
|
|||||
| CVE-2022-34144 | 1 Qualcomm | 136 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 133 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
|
|||||
| CVE-2022-33307 | 1 Qualcomm | 220 Aqt1000, Aqt1000 Firmware, Qam8255p and 217 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
|
|||||