Search Results (260 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-21446 1 Qualcomm 481 Ar8035, Ar8035 Firmware, Ar9380 and 478 more 2025-08-11 7.5 High
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
CVE-2023-28554 1 Qualcomm 296 Aqt1000, Aqt1000 Firmware, Ar9380 and 293 more 2025-08-11 6.1 Medium
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
CVE-2023-28556 1 Qualcomm 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 449 more 2025-08-11 7.1 High
Cryptographic issue in HLOS during key management.
CVE-2023-28587 1 Qualcomm 380 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 377 more 2025-08-11 7.8 High
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
CVE-2023-33109 1 Qualcomm 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 617 more 2025-08-11 7.5 High
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
CVE-2023-33095 1 Qualcomm 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more 2025-08-11 7.5 High
Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.
CVE-2023-33062 1 Qualcomm 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more 2025-08-11 7.5 High
Transient DOS in WLAN Firmware while parsing a BTM request.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2025-08-11 8.4 High
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2023-33115 1 Qualcomm 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more 2025-08-11 7.8 High
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2023-33120 1 Qualcomm 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more 2025-08-11 7.8 High
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-43518 1 Qualcomm 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more 2025-08-11 7.3 High
Memory corruption in video while parsing invalid mp2 clip.
CVE-2023-43519 1 Qualcomm 268 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 265 more 2025-08-11 7.3 High
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
CVE-2023-43530 1 Qualcomm 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more 2025-08-11 5.9 Medium
Memory corruption in HLOS while checking for the storage type.
CVE-2023-43531 1 Qualcomm 256 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 253 more 2025-08-11 8.4 High
Memory corruption while verifying the serialized header when the key pairs are generated.
CVE-2024-53027 1 Qualcomm 424 205, 205 Firmware, Apq8017 and 421 more 2025-08-11 7.5 High
Transient DOS may occur while processing the country IE.
CVE-2023-43555 1 Qualcomm 238 215 Mobile, 215 Mobile Firmware, Aqt1000 and 235 more 2025-08-11 8.2 High
Information disclosure in Video while parsing mp2 clip with invalid section length.
CVE-2024-21481 1 Qualcomm 333 Aqt1000, Aqt1000 Firmware, Ar8035 and 330 more 2025-08-11 8.4 High
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
CVE-2024-33048 1 Qualcomm 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more 2025-08-11 7.5 High
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2024-23369 1 Qualcomm 237 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 234 more 2025-08-11 7.8 High
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.