Search
Search Results (178 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-33040 | 1 Qualcomm | 288 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 285 more | 2025-06-03 | 7.5 High |
| Transient DOS in Data Modem during DTLS handshake. | ||||
| CVE-2023-33110 | 1 Qualcomm | 246 Snapdragon 425 Mobile Platform, Snapdragon 425 Mobile Platform Firmware, Snapdragon 427 Mobile Platform and 243 more | 2025-05-21 | 7.8 High |
| The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. | ||||
| CVE-2023-33033 | 1 Qualcomm | 528 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 525 more | 2025-05-21 | 8.4 High |
| Memory corruption in Audio during playback with speaker protection. | ||||
| CVE-2023-33025 | 1 Qualcomm | 48 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 45 more | 2025-04-17 | 9.8 Critical |
| Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call. | ||||
| CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2025-02-27 | 8.4 High |
| Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. | ||||
| CVE-2023-28548 | 1 Qualcomm | 366 Aqt1000, Aqt1000 Firmware, Ar8035 and 363 more | 2025-02-27 | 7.8 High |
| Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART. | ||||
| CVE-2023-28549 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 447 more | 2025-02-27 | 7.8 High |
| Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload. | ||||
| CVE-2023-24844 | 1 Qualcomm | 86 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 83 more | 2025-02-27 | 8.4 High |
| Memory Corruption in Core while invoking a call to Access Control core library with hardware protected address range. | ||||
| CVE-2023-24853 | 1 Qualcomm | 226 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 223 more | 2025-02-27 | 8.4 High |
| Memory Corruption in HLOS while registering for key provisioning notify. | ||||
| CVE-2023-28540 | 1 Qualcomm | 304 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 301 more | 2025-02-27 | 9.1 Critical |
| Cryptographic issue in Data Modem due to improper authentication during TLS handshake. | ||||
| CVE-2022-40507 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 481 more | 2025-01-07 | 8.4 High |
| Memory corruption due to double free in Core while mapping HLOS address to the list. | ||||
| CVE-2023-21670 | 1 Qualcomm | 364 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 361 more | 2025-01-07 | 7.8 High |
| Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode. | ||||
| CVE-2024-33063 | 1 Qualcomm | 250 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 247 more | 2024-12-12 | 7.5 High |
| Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present. | ||||
| CVE-2024-33056 | 1 Qualcomm | 662 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 659 more | 2024-12-12 | 8.4 High |
| Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | ||||
| CVE-2024-33044 | 1 Qualcomm | 425 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 422 more | 2024-12-12 | 8.4 High |
| Memory corruption while Configuring the SMR/S2CR register in Bypass mode. | ||||
| CVE-2023-33083 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Ar9380 and 227 more | 2024-12-02 | 9.8 Critical |
| Memory corruption in WLAN Host while processing RRM beacon on the AP. | ||||
| CVE-2024-33012 | 1 Qualcomm | 501 Ar8035, Ar8035 Firmware, Ar9380 and 498 more | 2024-11-26 | 7.5 High |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | ||||
| CVE-2024-33013 | 1 Qualcomm | 342 Ar8035, Ar8035 Firmware, Csr8811 and 339 more | 2024-11-26 | 7.5 High |
| Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length. | ||||
| CVE-2024-33011 | 1 Qualcomm | 501 Ar8035, Ar8035 Firmware, Ar9380 and 498 more | 2024-11-26 | 7.5 High |
| Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. | ||||
| CVE-2024-33010 | 1 Qualcomm | 499 Ar8035, Ar8035 Firmware, Ar9380 and 496 more | 2024-11-26 | 7.5 High |
| Transient DOS while parsing fragments of MBSSID IE from beacon frame. | ||||