Search Results (341 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-21471 1 Qualcomm 350 205 Mobile, 205 Mobile Firmware, 215 Mobile and 347 more 2025-08-11 8.4 High
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
CVE-2024-21475 1 Qualcomm 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more 2025-08-11 7.8 High
Memory corruption when the payload received from firmware is not as per the expected protocol size.
CVE-2024-23369 1 Qualcomm 237 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 234 more 2025-08-11 7.8 High
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVE-2024-21480 1 Qualcomm 230 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 227 more 2025-08-11 7.3 High
Memory corruption while playing audio file having large-sized input buffer.
CVE-2023-43547 1 Qualcomm 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
CVE-2023-43537 1 Qualcomm 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more 2025-08-11 6.5 Medium
Information disclosure while handling T2LM Action Frame in WLAN Host.
CVE-2023-43520 1 Qualcomm 140 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 137 more 2025-08-11 8.6 High
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.
CVE-2023-43514 1 Qualcomm 167 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 164 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
CVE-2023-28550 1 Qualcomm 670 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 667 more 2025-08-11 7.8 High
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-43511 1 Qualcomm 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more 2025-08-11 7.5 High
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
CVE-2023-33115 1 Qualcomm 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more 2025-08-11 7.8 High
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2023-33112 1 Qualcomm 255 Ar8035, Ar8035 Firmware, Csra6620 and 252 more 2025-08-11 7.5 High
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
CVE-2023-33109 1 Qualcomm 620 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 617 more 2025-08-11 7.5 High
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
CVE-2024-49839 1 Qualcomm 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more 2025-08-11 8.2 High
Memory corruption during management frame processing due to mismatch in T2LM info element.
CVE-2023-28578 1 Qualcomm 680 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 677 more 2025-08-11 9.3 Critical
Memory corruption in Core Services while executing the command for removing a single event listener.
CVE-2023-33104 1 Qualcomm 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more 2025-08-11 7.5 High
Transient DOS while processing PDU Release command with a parameter PDU ID out of range.
CVE-2023-28587 1 Qualcomm 380 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 377 more 2025-08-11 7.8 High
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
CVE-2023-28588 1 Qualcomm 428 Apq8017, Apq8017 Firmware, Apq8064au and 425 more 2025-08-11 7.5 High
Transient DOS in Bluetooth Host while rfc slot allocation.
CVE-2023-33101 1 Qualcomm 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more 2025-08-11 7.5 High
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.