Search Results (268 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-21475 1 Qualcomm 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more 2025-08-11 7.8 High
Memory corruption when the payload received from firmware is not as per the expected protocol size.
CVE-2023-21673 1 Qualcomm 326 Aqt1000, Aqt1000 Firmware, Ar8035 and 323 more 2025-08-11 8.7 High
Improper Access to the VM resource manager can lead to Memory Corruption.
CVE-2023-33117 1 Qualcomm 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more 2025-08-11 7.8 High
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
CVE-2023-43522 1 Qualcomm 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more 2025-08-11 7.5 High
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
CVE-2025-27061 1 Qualcomm 689 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 686 more 2025-08-11 7.8 High
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
CVE-2023-33098 1 Qualcomm 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more 2025-08-11 7.5 High
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
CVE-2023-43511 1 Qualcomm 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more 2025-08-11 7.5 High
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
CVE-2023-33094 1 Qualcomm 250 Ar8035, Ar8035 Firmware, Csra6620 and 247 more 2025-08-11 8.4 High
Memory corruption while running VK synchronization with KASAN enabled.
CVE-2025-21446 1 Qualcomm 481 Ar8035, Ar8035 Firmware, Ar9380 and 478 more 2025-08-11 7.5 High
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
CVE-2024-33045 1 Qualcomm 385 Ar8035, Ar8035 Firmware, Csra6620 and 382 more 2025-08-11 8.4 High
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2023-33115 1 Qualcomm 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more 2025-08-11 7.8 High
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2025-08-11 8.4 High
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2025-21450 1 Qualcomm 217 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 214 more 2025-08-11 9.1 Critical
Cryptographic issue occurs due to use of insecure connection method while downloading.
CVE-2023-33113 1 Qualcomm 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more 2025-08-11 8.4 High
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
CVE-2023-22386 1 Qualcomm 402 215, 215 Firmware, Ar8035 and 399 more 2025-08-11 7.8 High
Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.
CVE-2023-22387 1 Qualcomm 542 205, 205 Firmware, 215 and 539 more 2025-08-11 7.8 High
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
CVE-2023-33089 1 Qualcomm 456 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 453 more 2025-08-11 7.5 High
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
CVE-2023-33080 1 Qualcomm 733 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 730 more 2025-08-11 7.5 High
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
CVE-2023-33112 1 Qualcomm 255 Ar8035, Ar8035 Firmware, Csra6620 and 252 more 2025-08-11 7.5 High
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
CVE-2023-33087 1 Qualcomm 236 Apq5053-aa, Apq5053-aa Firmware, Ar8035 and 233 more 2025-08-11 7.8 High
Memory corruption in Core while processing RX intent request.