Filtered by vendor Qualcomm
Subscribe
Filtered by product Snapdragon X75 5g Modem-rf Firmware
Subscribe
Total
79 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47402 | 1 Qualcomm | 188 Ar8035, Ar8035 Firmware, Cologne and 185 more | 2026-02-11 | N/A | 6.5 MEDIUM |
|
Transient DOS when processing a received frame with an excessively large authentication information element.
|
|||||
| CVE-2025-47366 | 1 Qualcomm | 318 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 315 more | 2026-02-11 | N/A | 7.1 HIGH |
|
Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.
|
|||||
| CVE-2025-21449 | 1 Qualcomm | 370 315 5g Iot, 315 5g Iot Firmware, Apq8017 and 367 more | 2026-02-10 | N/A | 7.5 HIGH |
|
Transient DOS may occur while processing malformed length field in SSID IEs.
|
|||||
| CVE-2024-49841 | 1 Qualcomm | 346 Aqt1000, Aqt1000 Firmware, Ar8035 and 343 more | 2025-12-19 | N/A | 7.8 HIGH |
|
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.
|
|||||
| CVE-2025-27042 | 1 Qualcomm | 688 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 685 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption while processing video packets received from video firmware.
|
|||||
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling beacon frames with invalid IE header length.
|
|||||
| CVE-2023-33066 | 1 Qualcomm | 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in Audio while processing RT proxy port register driver.
|
|||||
| CVE-2025-21453 | 1 Qualcomm | 532 205 Mobile, 205 Mobile Firmware, 215 Mobile and 529 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
|
|||||
| CVE-2023-33086 | 1 Qualcomm | 314 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 311 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.
|
|||||
| CVE-2023-43546 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while invoking HGSL IOCTL context create.
|
|||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
|
|||||
| CVE-2023-33101 | 1 Qualcomm | 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.
|
|||||
| CVE-2025-21433 | 1 Qualcomm | 550 215 Mobile, 215 Mobile Firmware, Apq8017 and 547 more | 2025-08-11 | N/A | 6.2 MEDIUM |
|
Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.
|
|||||
| CVE-2023-43528 | 1 Qualcomm | 182 Ar8035, Ar8035 Firmware, C-v2x 9150 and 179 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
|
|||||
| CVE-2024-33067 | 1 Qualcomm | 154 Ar8035, Ar8035 Firmware, C-v2x 9150 and 151 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
|
|||||
| CVE-2023-43550 | 1 Qualcomm | 270 Ar8035, Ar8035 Firmware, Csra6620 and 267 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.
|
|||||
| CVE-2023-43531 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 253 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while verifying the serialized header when the key pairs are generated.
|
|||||
| CVE-2023-43552 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2025-08-11 | N/A | 9.8 CRITICAL |
|
Memory corruption while processing MBSSID beacon containing several subelement IE.
|
|||||
| CVE-2023-43529 | 1 Qualcomm | 322 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 319 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.
|
|||||
| CVE-2023-28547 | 1 Qualcomm | 604 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 601 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption in SPS Application while requesting for public key in sorter TA.
|
|||||
| CVE-2024-21480 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 227 more | 2025-08-11 | N/A | 7.3 HIGH |
|
Memory corruption while playing audio file having large-sized input buffer.
|
|||||
| CVE-2024-49842 | 1 Qualcomm | 358 Aqt1000, Aqt1000 Firmware, Ar8035 and 355 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.
|
|||||
| CVE-2025-21422 | 1 Qualcomm | 442 Aqt1000, Aqt1000 Firmware, Ar8035 and 439 more | 2025-08-11 | N/A | 7.1 HIGH |
|
Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.
|
|||||
| CVE-2023-43537 | 1 Qualcomm | 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more | 2025-08-11 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling T2LM Action Frame in WLAN Host.
|
|||||
| CVE-2025-27052 | 1 Qualcomm | 312 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 309 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing data packets in diag received from Unix clients.
|
|||||
| CVE-2024-45553 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 253 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.
|
|||||
| CVE-2025-21446 | 1 Qualcomm | 480 Ar8035, Ar8035 Firmware, Ar9380 and 477 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
|
|||||
| CVE-2023-43547 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
|
|||||
| CVE-2024-38402 | 1 Qualcomm | 336 Ar8035, Ar8035 Firmware, Csra6620 and 333 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing IOCTL call for getting group info.
|
|||||
| CVE-2025-21450 | 1 Qualcomm | 216 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 213 more | 2025-08-11 | N/A | 9.1 CRITICAL |
|
Cryptographic issue occurs due to use of insecure connection method while downloading.
|
|||||
| CVE-2023-33096 | 1 Qualcomm | 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
|
|||||
| CVE-2023-33119 | 1 Qualcomm | 322 Aqt1000, Aqt1000 Firmware, Ar8035 and 319 more | 2025-08-11 | N/A | 8.4 HIGH |
|
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.
|
|||||
| CVE-2024-49844 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 359 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while triggering commands in the PlayReady Trusted application.
|
|||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Memory corruption during management frame processing due to mismatch in T2LM info element.
|
|||||
| CVE-2023-33104 | 1 Qualcomm | 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing PDU Release command with a parameter PDU ID out of range.
|
|||||
| CVE-2024-21475 | 1 Qualcomm | 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption when the payload received from firmware is not as per the expected protocol size.
|
|||||
| CVE-2023-33095 | 1 Qualcomm | 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.
|
|||||
| CVE-2025-27043 | 1 Qualcomm | 412 Ar8035, Ar8035 Firmware, Csr8811 and 409 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while processing manipulated payload in video firmware.
|
|||||
| CVE-2024-53009 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8035 and 375 more | 2025-08-11 | N/A | 5.3 MEDIUM |
|
Memory corruption while operating the mailbox in Automotive.
|
|||||
| CVE-2025-21432 | 1 Qualcomm | 492 Aqt1000, Aqt1000 Firmware, Ar8035 and 489 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory corruption while retrieving the CBOR data from TA.
|
|||||