Total
533 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47379 | 1 Qualcomm | 356 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Ar8031 and 353 more | 2026-03-05 | N/A | 7.8 HIGH |
|
Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources.
|
|||||
| CVE-2025-47386 | 1 Qualcomm | 340 Ar8031, Ar8031 Firmware, Ar8035 and 337 more | 2026-03-05 | N/A | 7.8 HIGH |
|
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
|
|||||
| CVE-2025-47383 | 1 Qualcomm | 412 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, 9206 Lte Modem and 409 more | 2026-03-04 | N/A | 7.2 HIGH |
|
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.
|
|||||
| CVE-2026-21385 | 1 Qualcomm | 474 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Apq8098 and 471 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory corruption while using alignments for memory allocation.
|
|||||
| CVE-2025-47375 | 1 Qualcomm | 338 Ar8031, Ar8031 Firmware, Ar8035 and 335 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory corruption while handling different IOCTL calls from the user-space simultaneously.
|
|||||
| CVE-2025-47376 | 1 Qualcomm | 340 Ar8031, Ar8031 Firmware, Ar8035 and 337 more | 2026-03-04 | N/A | 7.8 HIGH |
|
Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.
|
|||||
| CVE-2025-21427 | 1 Qualcomm | 358 205 Mobile, 205 Mobile Firmware, 215 Mobile and 355 more | 2026-02-11 | N/A | 8.2 HIGH |
|
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
|
|||||
| CVE-2025-21429 | 1 Qualcomm | 364 9206 Lte Modem, 9206 Lte Modem Firmware, Apq8017 and 361 more | 2026-02-10 | N/A | 7.5 HIGH |
|
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request.
|
|||||
| CVE-2025-47320 | 1 Qualcomm | 426 9206 Lte Modem, 9206 Lte Modem Firmware, Apq8017 and 423 more | 2026-02-10 | N/A | 7.8 HIGH |
|
Memory corruption while processing MFC channel configuration during music playback.
|
|||||
| CVE-2025-21484 | 1 Qualcomm | 346 Apq8064au, Apq8064au Firmware, Aqt1000 and 343 more | 2026-02-10 | N/A | 8.2 HIGH |
|
Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.
|
|||||
| CVE-2025-27063 | 1 Qualcomm | 222 Csra6620, Csra6620 Firmware, Csra6640 and 219 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption during video playback when video session open fails with time out error.
|
|||||
| CVE-2025-47330 | 1 Qualcomm | 446 Ar8031, Ar8031 Firmware, Ar8035 and 443 more | 2026-01-28 | N/A | 5.5 MEDIUM |
|
Transient DOS while parsing video packets received from the video firmware.
|
|||||
| CVE-2025-47331 | 1 Qualcomm | 598 Ar8031, Ar8031 Firmware, Ar8035 and 595 more | 2026-01-28 | N/A | 6.1 MEDIUM |
|
Information disclosure while processing a firmware event.
|
|||||
| CVE-2025-47333 | 1 Qualcomm | 478 Aqt1000, Aqt1000 Firmware, Ar8031 and 475 more | 2026-01-28 | N/A | 6.6 MEDIUM |
|
Memory corruption while handling buffer mapping operations in the cryptographic driver.
|
|||||
| CVE-2025-47348 | 1 Qualcomm | 408 Aqt1000, Aqt1000 Firmware, Ar8035 and 405 more | 2026-01-28 | N/A | 7.8 HIGH |
|
Memory corruption while processing identity credential operations in the trusted application.
|
|||||
| CVE-2025-47369 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Csra6620 and 347 more | 2026-01-27 | N/A | 5.5 MEDIUM |
|
Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.
|
|||||
| CVE-2024-49841 | 1 Qualcomm | 346 Aqt1000, Aqt1000 Firmware, Ar8035 and 343 more | 2025-12-19 | N/A | 7.8 HIGH |
|
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.
|
|||||
| CVE-2025-21482 | 1 Qualcomm | 574 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 571 more | 2025-12-02 | N/A | 7.1 HIGH |
|
Cryptographic issue while performing RSA PKCS padding decoding.
|
|||||
| CVE-2024-53010 | 1 Qualcomm | 386 Aqt1000, Aqt1000 Firmware, Ar8035 and 383 more | 2025-11-28 | N/A | 7.8 HIGH |
|
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
|
|||||
| CVE-2024-53020 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
|
|||||
| CVE-2025-21483 | 1 Qualcomm | 454 Apq8017, Apq8017 Firmware, Apq8064au and 451 more | 2025-11-28 | N/A | 9.8 CRITICAL |
|
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
|
|||||
| CVE-2025-21465 | 1 Qualcomm | 698 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 695 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while processing the hash segment in an MBN file.
|
|||||
| CVE-2025-21464 | 1 Qualcomm | 684 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 681 more | 2025-11-28 | N/A | 6.5 MEDIUM |
|
Information disclosure while reading data from an image using specified offset and size parameters.
|
|||||
| CVE-2024-53026 | 1 Qualcomm | 468 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 465 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
|
|||||
| CVE-2024-53021 | 1 Qualcomm | 450 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 447 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure may occur while processing goodbye RTCP packet from network.
|
|||||
| CVE-2025-21487 | 1 Qualcomm | 454 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 451 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
|
|||||
| CVE-2025-47318 | 1 Qualcomm | 406 Apq8017, Apq8017 Firmware, Apq8064au and 403 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the EPTM test control message to get the test pattern.
|
|||||
| CVE-2025-27066 | 1 Qualcomm | 744 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 741 more | 2025-11-28 | N/A | 7.5 HIGH |
|
Transient DOS while processing an ANQP message.
|
|||||
| CVE-2025-27032 | 1 Qualcomm | 384 Aqt1000, Aqt1000 Firmware, Ar8035 and 381 more | 2025-11-28 | N/A | 7.8 HIGH |
|
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
|
|||||
| CVE-2025-21488 | 1 Qualcomm | 216 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 213 more | 2025-11-28 | N/A | 8.2 HIGH |
|
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
|
|||||
| CVE-2025-27054 | 1 Qualcomm | 598 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 595 more | 2025-11-05 | N/A | 7.8 HIGH |
|
Memory corruption while processing a malformed license file during reboot.
|
|||||
| CVE-2023-33106 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, Csra6620 and 303 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
|
|||||
| CVE-2023-33107 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 481 more | 2025-10-28 | N/A | 8.4 HIGH |
|
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
|
|||||
| CVE-2020-11261 | 1 Qualcomm | 798 Apq8009, Apq8009 Firmware, Apq8009w and 795 more | 2025-10-28 | 7.2 HIGH | 7.8 HIGH |
|
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2022-22071 | 1 Qualcomm | 180 Apq8053, Apq8053 Firmware, Ar8031 and 177 more | 2025-10-28 | 7.2 HIGH | 8.4 HIGH |
|
Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
|
|||||
| CVE-2021-1905 | 1 Qualcomm | 792 Apq8009, Apq8009 Firmware, Apq8009w and 789 more | 2025-10-28 | 7.2 HIGH | 8.4 HIGH |
|
Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2021-1906 | 1 Qualcomm | 800 Apq8009, Apq8009 Firmware, Apq8009w and 797 more | 2025-10-28 | 2.1 LOW | 6.2 MEDIUM |
|
Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
|
|||||
| CVE-2023-33063 | 1 Qualcomm | 562 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 559 more | 2025-10-27 | N/A | 7.8 HIGH |
|
Memory corruption in DSP Services during a remote call from HLOS to DSP.
|
|||||
| CVE-2024-43066 | 1 Qualcomm | 196 Csrb31024, Csrb31024 Firmware, Fastconnect 6200 and 193 more | 2025-10-06 | N/A | 7.8 HIGH |
|
Memory corruption while handling file descriptor during listener registration/de-registration.
|
|||||
| CVE-2024-43046 | 1 Qualcomm | 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 617 more | 2025-10-06 | N/A | 5.5 MEDIUM |
|
There may be information disclosure during memory re-allocation in TZ Secure OS.
|
|||||