Search Results (181 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-33112 1 Qualcomm 255 Ar8035, Ar8035 Firmware, Csra6620 and 252 more 2025-08-11 7.5 High
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
CVE-2023-33115 1 Qualcomm 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more 2025-08-11 7.8 High
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2023-43511 1 Qualcomm 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more 2025-08-11 7.5 High
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-43514 1 Qualcomm 167 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 164 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
CVE-2023-43520 1 Qualcomm 140 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 137 more 2025-08-11 8.6 High
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.
CVE-2023-43537 1 Qualcomm 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more 2025-08-11 6.5 Medium
Information disclosure while handling T2LM Action Frame in WLAN Host.
CVE-2023-43547 1 Qualcomm 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
CVE-2023-33066 1 Qualcomm 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more 2025-08-11 8.4 High
Memory corruption in Audio while processing RT proxy port register driver.
CVE-2023-43536 1 Qualcomm 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more 2025-08-11 7.5 High
Transient DOS while parse fils IE with length equal to 1.
CVE-2023-33080 1 Qualcomm 733 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 730 more 2025-08-11 7.5 High
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
CVE-2023-33087 1 Qualcomm 236 Apq5053-aa, Apq5053-aa Firmware, Ar8035 and 233 more 2025-08-11 7.8 High
Memory corruption in Core while processing RX intent request.
CVE-2024-33057 1 Qualcomm 356 Ar8035, Ar8035 Firmware, Csr8811 and 353 more 2025-08-11 7.5 High
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2023-43546 1 Qualcomm 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more 2025-08-11 8.4 High
Memory corruption while invoking HGSL IOCTL context create.
CVE-2025-27043 1 Qualcomm 413 Ar8035, Ar8035 Firmware, Csr8811 and 410 more 2025-08-11 7.8 High
Memory corruption while processing manipulated payload in video firmware.
CVE-2023-28556 1 Qualcomm 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 449 more 2025-08-11 7.1 High
Cryptographic issue in HLOS during key management.
CVE-2023-33029 1 Qualcomm 264 Apq8009, Apq8009 Firmware, Ar8035 and 261 more 2025-08-11 8.4 High
Memory corruption in DSP Service during a remote call from HLOS to DSP.
CVE-2023-33098 1 Qualcomm 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more 2025-08-11 7.5 High
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
CVE-2023-33117 1 Qualcomm 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more 2025-08-11 7.8 High
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
CVE-2023-33118 1 Qualcomm 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more 2025-08-11 7.8 High
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.