Filtered by vendor Qualcomm
Subscribe
Filtered by product Snapdragon 8\+ Gen 1 Mobile Platform Firmware
Subscribe
Total
125 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47371 | 1 Qualcomm | 250 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Ar8035 and 247 more | 2026-03-04 | N/A | 6.5 MEDIUM |
|
Transient DOS when an LTE RLC packet with invalid TB is received by UE.
|
|||||
| CVE-2025-47383 | 1 Qualcomm | 412 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, 9206 Lte Modem and 409 more | 2026-03-04 | N/A | 7.2 HIGH |
|
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.
|
|||||
| CVE-2025-47373 | 1 Qualcomm | 376 Ar8035, Ar8035 Firmware, Cologne and 373 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory Corruption when accessing buffers with invalid length during TA invocation.
|
|||||
| CVE-2026-21385 | 1 Qualcomm | 474 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Apq8098 and 471 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory corruption while using alignments for memory allocation.
|
|||||
| CVE-2025-21429 | 1 Qualcomm | 364 9206 Lte Modem, 9206 Lte Modem Firmware, Apq8017 and 361 more | 2026-02-10 | N/A | 7.5 HIGH |
|
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request.
|
|||||
| CVE-2025-21484 | 1 Qualcomm | 346 Apq8064au, Apq8064au Firmware, Aqt1000 and 343 more | 2026-02-10 | N/A | 8.2 HIGH |
|
Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.
|
|||||
| CVE-2025-47323 | 1 Qualcomm | 356 Ar8035, Ar8035 Firmware, Csra6620 and 353 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption while routing GPR packets between user and root when handling large data packet.
|
|||||
| CVE-2025-47330 | 1 Qualcomm | 446 Ar8031, Ar8031 Firmware, Ar8035 and 443 more | 2026-01-28 | N/A | 5.5 MEDIUM |
|
Transient DOS while parsing video packets received from the video firmware.
|
|||||
| CVE-2025-47331 | 1 Qualcomm | 598 Ar8031, Ar8031 Firmware, Ar8035 and 595 more | 2026-01-28 | N/A | 6.1 MEDIUM |
|
Information disclosure while processing a firmware event.
|
|||||
| CVE-2025-47333 | 1 Qualcomm | 478 Aqt1000, Aqt1000 Firmware, Ar8031 and 475 more | 2026-01-28 | N/A | 6.6 MEDIUM |
|
Memory corruption while handling buffer mapping operations in the cryptographic driver.
|
|||||
| CVE-2025-47348 | 1 Qualcomm | 408 Aqt1000, Aqt1000 Firmware, Ar8035 and 405 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption while processing identity credential operations in the trusted application.
|
|||||
| CVE-2025-47332 | 1 Qualcomm | 148 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 145 more | 2026-01-28 | N/A | 6.7 MEDIUM |
|
Memory corruption while processing a config call from userspace.
|
|||||
| CVE-2025-47334 | 1 Qualcomm | 292 Csra6620, Csra6620 Firmware, Csra6640 and 289 more | 2026-01-27 | N/A | 6.7 MEDIUM |
|
Memory corruption while processing shared command buffer packet between camera userspace and kernel.
|
|||||
| CVE-2025-47369 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Csra6620 and 347 more | 2026-01-27 | N/A | 5.5 MEDIUM |
|
Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.
|
|||||
| CVE-2024-53010 | 1 Qualcomm | 386 Aqt1000, Aqt1000 Firmware, Ar8035 and 383 more | 2025-11-28 | N/A | 7.8 HIGH |
|
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
|
|||||
| CVE-2024-53020 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
|
|||||
| CVE-2025-21483 | 1 Qualcomm | 454 Apq8017, Apq8017 Firmware, Apq8064au and 451 more | 2025-11-28 | N/A | 9.8 CRITICAL |
|
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
|
|||||
| CVE-2025-27034 | 1 Qualcomm | 226 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 223 more | 2025-11-28 | N/A | 9.8 CRITICAL |
|
Memory corruption while selecting the PLMN from SOR failed list.
|
|||||
| CVE-2025-21465 | 1 Qualcomm | 698 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 695 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while processing the hash segment in an MBN file.
|
|||||
| CVE-2025-21464 | 1 Qualcomm | 684 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 681 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while reading data from an image using specified offset and size parameters.
|
|||||
| CVE-2024-53026 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
|
|||||
| CVE-2024-53021 | 1 Qualcomm | 450 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 447 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while processing goodbye RTCP packet from network.
|
|||||
| CVE-2025-21487 | 1 Qualcomm | 454 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 451 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
|
|||||
| CVE-2025-27066 | 1 Qualcomm | 744 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 741 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while processing an ANQP message.
|
|||||
| CVE-2025-21488 | 1 Qualcomm | 216 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 213 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
|
|||||
| CVE-2025-27053 | 1 Qualcomm | 638 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 635 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption during PlayReady APP usecase while processing TA commands.
|
|||||
| CVE-2025-27054 | 1 Qualcomm | 598 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 595 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while processing a malformed license file during reboot.
|
|||||
| CVE-2023-33106 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, Csra6620 and 303 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
|
|||||
| CVE-2023-33107 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 481 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
|
|||||
| CVE-2024-43046 | 1 Qualcomm | 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 617 more | 2025-10-06 | N/A | 5.5 MEDIUM |
|
There may be information disclosure during memory re-allocation in TZ Secure OS.
|
|||||
| CVE-2024-49848 | 1 Qualcomm | 294 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 291 more | 2025-10-06 | N/A | 6.7 MEDIUM |
|
Memory corruption while processing multiple IOCTL calls from HLOS to DSP.
|
|||||
| CVE-2024-45552 | 1 Qualcomm | 292 Apq8064au, Apq8064au Firmware, Fastconnect 6200 and 289 more | 2025-10-06 | N/A | 8.2 HIGH |
|
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.
|
|||||
| CVE-2024-45551 | 1 Qualcomm | 484 Aqt1000, Aqt1000 Firmware, Ar8035 and 481 more | 2025-10-06 | N/A | 6.2 MEDIUM |
|
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
|
|||||
| CVE-2024-45549 | 1 Qualcomm | 320 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 317 more | 2025-10-06 | N/A | 7.7 HIGH |
|
Information disclosure while creating MQ channels.
|
|||||
| CVE-2025-21448 | 1 Qualcomm | 538 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 535 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS may occur while parsing SSID in action frames.
|
|||||
| CVE-2025-21430 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 447 more | 2025-10-06 | N/A | 7.5 HIGH |
|
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
|
|||||
| CVE-2024-33035 | 1 Qualcomm | 180 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 177 more | 2025-10-03 | N/A | 8.4 HIGH |
|
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
|
|||||
| CVE-2024-33016 | 1 Qualcomm | 666 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 663 more | 2025-10-03 | N/A | 6.8 MEDIUM |
|
memory corruption when an invalid firehose patch command is invoked.
|
|||||
| CVE-2024-23364 | 1 Qualcomm | 358 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 355 more | 2025-10-03 | N/A | 7.5 HIGH |
|
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
|
|||||
| CVE-2024-23362 | 1 Qualcomm | 464 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 461 more | 2025-10-03 | N/A | 7.1 HIGH |
|
Cryptographic issue while parsing RSA keys in COBR format.
|
|||||