Search Results (511 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-45556 1 Qualcomm 121 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 118 more 2025-08-19 6.5 Medium
Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.
CVE-2025-21457 2 Google, Qualcomm 32 Android, Ar8035, Ar8035 Firmware and 29 more 2025-08-19 6.1 Medium
Information disclosure while opening a fastrpc session when domain is not sanitized.
CVE-2025-27068 1 Qualcomm 33 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6900 and 30 more 2025-08-18 7.8 High
Memory corruption while processing an IOCTL command with an arbitrary address.
CVE-2024-21459 1 Qualcomm 352 Ar8035, Ar8035 Firmware, Ar9380 and 349 more 2025-08-15 6.5 Medium
Information disclosure while handling beacon or probe response frame in STA.
CVE-2021-34584 2 Codesys, Wago 55 Codesys, 750-8202, 750-8202 Firmware and 52 more 2025-08-15 9.1 Critical
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.
CVE-2024-52877 1 Insyde 1 Insydeh2o 2025-08-15 7.5 High
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, callback function SmmCreateVariableLockList () calls CreateVariableLockListInSmm (). In CreateVariableLockListInSmm (), it uses StrSize () to get variable name size and it could lead to a buffer over-read.
CVE-2024-52878 1 Insyde 1 Insydeh2o 2025-08-15 7.5 High
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, VariableServicesSetVariable () can be called by gRT_>SetVariable () or the SmmSetSensitiveVariable () or SmmInternalSetVariable () from SMM. In VariableServicesSetVariable (), it uses StrSize () to get variable name size, uses StrLen () to get variable name length and uses StrCmp () to compare strings. These actions may cause a buffer over-read.
CVE-2024-52879 1 Insyde 1 Insydeh2o 2025-08-15 7.5 High
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, SmmUpdateVariablePropertySmi () is a SMM callback function and it uses StrCmp () to compare variable names. This action may cause a buffer over-read.
CVE-2023-28563 1 Qualcomm 460 Aqt1000, Aqt1000 Firmware, Ar8031 and 457 more 2025-08-11 6.1 Medium
Information disclosure in IOE Firmware while handling WMI command.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 8.2 High
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
CVE-2024-33050 1 Qualcomm 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more 2025-08-11 7.5 High
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2024-49839 1 Qualcomm 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more 2025-08-11 8.2 High
Memory corruption during management frame processing due to mismatch in T2LM info element.
CVE-2023-28566 1 Qualcomm 250 Aqt1000, Aqt1000 Firmware, Csrb31024 and 247 more 2025-08-11 6.1 Medium
Information disclosure in WLAN HAL while handling the WMI state info command.
CVE-2023-28569 1 Qualcomm 416 Aqt1000, Aqt1000 Firmware, Ar9380 and 413 more 2025-08-11 6.1 Medium
Information disclosure in WLAN HAL while handling command through WMI interfaces.
CVE-2023-24848 1 Qualcomm 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more 2025-08-11 8.2 High
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
CVE-2023-28554 1 Qualcomm 296 Aqt1000, Aqt1000 Firmware, Ar9380 and 293 more 2025-08-11 6.1 Medium
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
CVE-2025-21459 1 Qualcomm 248 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 245 more 2025-08-11 7.5 High
Transient DOS while parsing per STA profile in ML IE.
CVE-2025-27055 1 Qualcomm 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more 2025-08-11 7.8 High
Memory corruption during the image encoding process.
CVE-2023-33064 1 Qualcomm 178 Aqt1000, Aqt1000 Firmware, Ar8035 and 175 more 2025-08-11 5.5 Medium
Transient DOS in Audio when invoking callback function of ASM driver.
CVE-2025-21446 1 Qualcomm 481 Ar8035, Ar8035 Firmware, Ar9380 and 478 more 2025-08-11 7.5 High
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.