Search Results (586 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-27057 1 Qualcomm 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more 2025-09-25 7.5 High
Transient DOS while handling beacon frames with invalid IE header length.
CVE-2025-27033 1 Qualcomm 65 Qca6698aq, Qca6698aq Firmware, Qcm5430 and 62 more 2025-09-25 6.1 Medium
Information disclosure while running video usecase having rogue firmware.
CVE-2025-27036 1 Qualcomm 43 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 40 more 2025-09-25 6.1 Medium
Information disclosure when Video engine escape input data is less than expected minimum size.
CVE-2025-27031 1 Qualcomm 43 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 40 more 2025-08-20 7.8 High
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.
CVE-2025-21477 1 Qualcomm 179 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 176 more 2025-08-20 7.5 High
Transient DOS while processing CCCH data when NW sends data with invalid length.
CVE-2025-21452 1 Qualcomm 161 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 158 more 2025-08-20 7.5 High
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.
CVE-2025-27076 1 Qualcomm 91 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 88 more 2025-08-19 7.8 High
Memory corruption while processing simultaneous requests via escape path.
CVE-2025-27075 1 Qualcomm 73 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 70 more 2025-08-18 7.8 High
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.
CVE-2023-24848 1 Qualcomm 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more 2025-08-11 8.2 High
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
CVE-2023-43530 1 Qualcomm 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more 2025-08-11 5.9 Medium
Memory corruption in HLOS while checking for the storage type.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 8.2 High
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
CVE-2023-24851 1 Qualcomm 382 Ar8035, Ar8035 Firmware, Csr8811 and 379 more 2025-08-11 7.8 High
Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
CVE-2023-28547 1 Qualcomm 667 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 664 more 2025-08-11 8.4 High
Memory corruption in SPS Application while requesting for public key in sorter TA.
CVE-2024-38397 1 Qualcomm 234 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 231 more 2025-08-11 7.5 High
Transient DOS while parsing probe response and assoc response frame.
CVE-2023-43514 1 Qualcomm 167 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 164 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
CVE-2024-33048 1 Qualcomm 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more 2025-08-11 7.5 High
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-24852 1 Qualcomm 542 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 539 more 2025-08-11 8.4 High
Memory Corruption in Core due to secure memory access by user while loading modem image.
CVE-2024-33057 1 Qualcomm 356 Ar8035, Ar8035 Firmware, Csr8811 and 353 more 2025-08-11 7.5 High
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2025-27046 1 Qualcomm 79 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 76 more 2025-08-11 7.8 High
Memory corruption while processing multiple simultaneous escape calls.