Total
275 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-33064 | 1 Qualcomm | 178 Aqt1000, Aqt1000 Firmware, Ar8035 and 175 more | 2025-08-11 | N/A | 5.5 MEDIUM |
| Transient DOS in Audio when invoking callback function of ASM driver. | |||||
| CVE-2024-33047 | 1 Qualcomm | 48 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 45 more | 2025-08-11 | N/A | 8.4 HIGH |
| Memory corruption when the captureRead QDCM command is invoked from user-space. | |||||
| CVE-2024-33067 | 1 Qualcomm | 154 Ar8035, Ar8035 Firmware, C-v2x 9150 and 151 more | 2025-08-11 | N/A | 6.1 MEDIUM |
| Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. | |||||
| CVE-2023-43537 | 1 Qualcomm | 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more | 2025-08-11 | N/A | 6.5 MEDIUM |
| Information disclosure while handling T2LM Action Frame in WLAN Host. | |||||
| CVE-2025-21449 | 1 Qualcomm | 370 315 5g Iot, 315 5g Iot Firmware, Apq8017 and 367 more | 2025-08-11 | N/A | 7.5 HIGH |
| Transient DOS may occur while processing malformed length field in SSID IEs. | |||||
| CVE-2025-21475 | 1 Qualcomm | 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more | 2025-08-11 | N/A | 7.8 HIGH |
| Memory corruption while processing escape code, when DisplayId is passed with large unsigned value. | |||||
| CVE-2023-33026 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Ar9380 and 387 more | 2025-08-11 | N/A | 7.5 HIGH |
| Transient DOS in WLAN Firmware while parsing a NAN management frame. | |||||
| CVE-2023-28566 | 1 Qualcomm | 250 Aqt1000, Aqt1000 Firmware, Csrb31024 and 247 more | 2025-08-11 | N/A | 6.1 MEDIUM |
| Information disclosure in WLAN HAL while handling the WMI state info command. | |||||
| CVE-2023-28569 | 1 Qualcomm | 416 Aqt1000, Aqt1000 Firmware, Ar9380 and 413 more | 2025-08-11 | N/A | 6.1 MEDIUM |
| Information disclosure in WLAN HAL while handling command through WMI interfaces. | |||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-08-11 | N/A | 8.2 HIGH |
| Memory corruption during management frame processing due to mismatch in T2LM info element. | |||||
| CVE-2023-28541 | 1 Qualcomm | 398 Aqt1000, Aqt1000 Firmware, Ar8031 and 395 more | 2025-08-11 | N/A | 7.8 HIGH |
| Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. | |||||
| CVE-2023-43555 | 1 Qualcomm | 238 215 Mobile, 215 Mobile Firmware, Aqt1000 and 235 more | 2025-08-11 | N/A | 8.2 HIGH |
| Information disclosure in Video while parsing mp2 clip with invalid section length. | |||||
| CVE-2023-28554 | 1 Qualcomm | 296 Aqt1000, Aqt1000 Firmware, Ar9380 and 293 more | 2025-08-11 | N/A | 6.1 MEDIUM |
| Information Disclosure in Qualcomm IPC while reading values from shared memory in VM. | |||||
| CVE-2024-43056 | 1 Qualcomm | 384 Aqt1000, Aqt1000 Firmware, Ar8035 and 381 more | 2025-08-11 | N/A | 5.5 MEDIUM |
| Transient DOS during hypervisor virtual I/O operation in a virtual machine. | |||||
| CVE-2023-33112 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2025-08-11 | N/A | 7.5 HIGH |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. | |||||
| CVE-2025-21454 | 1 Qualcomm | 384 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 381 more | 2025-08-11 | N/A | 7.5 HIGH |
| Transient DOS while processing received beacon frame. | |||||
| CVE-2025-27055 | 1 Qualcomm | 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more | 2025-08-11 | N/A | 7.8 HIGH |
| Memory corruption during the image encoding process. | |||||
| CVE-2023-28563 | 1 Qualcomm | 460 Aqt1000, Aqt1000 Firmware, Ar8031 and 457 more | 2025-08-11 | N/A | 6.1 MEDIUM |
| Information disclosure in IOE Firmware while handling WMI command. | |||||
| CVE-2024-9029 | 1 Freeimage Project | 1 Freeimage | 2025-08-08 | N/A | 7.5 HIGH |
| A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service. | |||||
| CVE-2023-53159 | 1 Sfackler | 1 Openssl | 2025-08-07 | N/A | 4.5 MEDIUM |
| The openssl crate before 0.10.55 for Rust allows an out-of-bounds read via an empty string to X509VerifyParamRef::set_host. | |||||