Search
Search Results (174 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | ||||
| CVE-2023-43534 | 1 Qualcomm | 132 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 129 more | 2025-08-11 | 8.6 High |
| Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point. | ||||
| CVE-2024-33042 | 1 Qualcomm | 456 205, 205 Firmware, 215 and 453 more | 2025-08-11 | 7.8 High |
| Memory corruption when Alternative Frequency offset value is set to 255. | ||||
| CVE-2025-27061 | 1 Qualcomm | 689 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 686 more | 2025-08-11 | 7.8 High |
| Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware. | ||||
| CVE-2023-22386 | 1 Qualcomm | 402 215, 215 Firmware, Ar8035 and 399 more | 2025-08-11 | 7.8 High |
| Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. | ||||
| CVE-2023-33026 | 1 Qualcomm | 401 Ar8035, Ar8035 Firmware, Ar9380 and 398 more | 2025-08-11 | 7.5 High |
| Transient DOS in WLAN Firmware while parsing a NAN management frame. | ||||
| CVE-2023-43518 | 1 Qualcomm | 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more | 2025-08-11 | 7.3 High |
| Memory corruption in video while parsing invalid mp2 clip. | ||||
| CVE-2023-43542 | 1 Qualcomm | 418 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 415 more | 2025-08-11 | 7.8 High |
| Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked. | ||||
| CVE-2023-43546 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | 8.4 High |
| Memory corruption while invoking HGSL IOCTL context create. | ||||
| CVE-2024-49838 | 1 Qualcomm | 338 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 335 more | 2025-02-05 | 8.2 High |
| Information disclosure while parsing the OCI IE with invalid length. | ||||
| CVE-2024-49843 | 1 Qualcomm | 104 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 7800 and 101 more | 2025-02-05 | 7.8 High |
| Memory corruption while processing IOCTL from user space to handle GPU AHB bus error. | ||||
| CVE-2024-45584 | 1 Qualcomm | 248 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 245 more | 2025-02-05 | 7.8 High |
| Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. | ||||
| CVE-2024-33043 | 1 Qualcomm | 406 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 403 more | 2024-12-20 | 5.5 Medium |
| Transient DOS while handling PS event when Program Service name length offset value is set to 255. | ||||
| CVE-2024-43052 | 1 Qualcomm | 185 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 182 more | 2024-12-12 | 7.8 High |
| Memory corruption while processing API calls to NPU with invalid input. | ||||
| CVE-2024-33063 | 1 Qualcomm | 250 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 247 more | 2024-12-12 | 7.5 High |
| Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present. | ||||
| CVE-2024-33056 | 1 Qualcomm | 662 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 659 more | 2024-12-12 | 8.4 High |
| Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | ||||
| CVE-2024-33044 | 1 Qualcomm | 425 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 422 more | 2024-12-12 | 8.4 High |
| Memory corruption while Configuring the SMR/S2CR register in Bypass mode. | ||||
| CVE-2024-33012 | 1 Qualcomm | 501 Ar8035, Ar8035 Firmware, Ar9380 and 498 more | 2024-11-26 | 7.5 High |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | ||||
| CVE-2024-33013 | 1 Qualcomm | 342 Ar8035, Ar8035 Firmware, Csr8811 and 339 more | 2024-11-26 | 7.5 High |
| Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length. | ||||
| CVE-2024-33011 | 1 Qualcomm | 501 Ar8035, Ar8035 Firmware, Ar9380 and 498 more | 2024-11-26 | 7.5 High |
| Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. | ||||