Total
793 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-38418 | 1 Qualcomm | 124 C-v2x 9150, C-v2x 9150 Firmware, Csrb31024 and 121 more | 2025-02-05 | N/A | 7.8 HIGH |
| Memory corruption while parsing the memory map info in IOCTL calls. | |||||
| CVE-2023-43543 | 1 Qualcomm | 32 Qam8255p, Qam8255p Firmware, Qam8775p and 29 more | 2025-01-27 | N/A | 6.7 MEDIUM |
| Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph object. | |||||
| CVE-2023-43544 | 1 Qualcomm | 54 Ar8035, Ar8035 Firmware, Fastconnect 7800 and 51 more | 2025-01-27 | N/A | 6.7 MEDIUM |
| Memory corruption when IPC callback handle is used after it has been released during register callback by another thread. | |||||
| CVE-2024-21477 | 1 Qualcomm | 368 Aqt1000, Aqt1000 Firmware, Ar8035 and 365 more | 2025-01-15 | N/A | 7.5 HIGH |
| Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. | |||||
| CVE-2024-21463 | 1 Qualcomm | 218 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 215 more | 2025-01-13 | N/A | 7.3 HIGH |
| Memory corruption while processing Codec2 during v13k decoder pitch synthesis. | |||||
| CVE-2023-33100 | 1 Qualcomm | 100 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 97 more | 2025-01-13 | N/A | 7.5 HIGH |
| Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification. | |||||
| CVE-2023-33103 | 1 Qualcomm | 96 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 93 more | 2025-01-10 | N/A | 7.5 HIGH |
| Transient DOS while processing CAG info IE received from NW. | |||||
| CVE-2023-33084 | 1 Qualcomm | 84 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 81 more | 2025-01-10 | N/A | 7.5 HIGH |
| Transient DOS while processing IE fragments from server during DTLS handshake. | |||||
| CVE-2023-28582 | 1 Qualcomm | 86 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 83 more | 2025-01-10 | N/A | 9.8 CRITICAL |
| Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake. | |||||
| CVE-2024-33061 | 1 Qualcomm | 18 Qcs8550, Qcs8550 Firmware, Sw5100 and 15 more | 2025-01-10 | N/A | 6.8 MEDIUM |
| Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process. | |||||
| CVE-2024-33043 | 1 Qualcomm | 406 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 403 more | 2024-12-20 | N/A | 5.5 MEDIUM |
| Transient DOS while handling PS event when Program Service name length offset value is set to 255. | |||||
| CVE-2024-43048 | 1 Qualcomm | 104 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6900 and 101 more | 2024-12-12 | N/A | 7.8 HIGH |
| Memory corruption when invalid input is passed to invoke GPU Headroom API call. | |||||
| CVE-2024-33056 | 1 Qualcomm | 658 205 Mobile Platform, 205 Mobile Platform Firmware, 315 5g Iot Modem and 655 more | 2024-12-12 | N/A | 8.4 HIGH |
| Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | |||||
| CVE-2024-33053 | 1 Qualcomm | 112 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6200 and 109 more | 2024-12-12 | N/A | 6.7 MEDIUM |
| Memory corruption when multiple threads try to unregister the CVP buffer at the same time. | |||||
| CVE-2024-33044 | 1 Qualcomm | 422 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 419 more | 2024-12-12 | N/A | 8.4 HIGH |
| Memory corruption while Configuring the SMR/S2CR register in Bypass mode. | |||||
| CVE-2024-33040 | 1 Qualcomm | 60 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 57 more | 2024-12-12 | N/A | 6.7 MEDIUM |
| Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access. | |||||
| CVE-2024-33039 | 1 Qualcomm | 44 Qam8255p, Qam8255p Firmware, Qam8650p and 41 more | 2024-12-11 | N/A | 6.7 MEDIUM |
| Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service. | |||||
| CVE-2024-33037 | 1 Qualcomm | 102 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 99 more | 2024-12-11 | N/A | 6.1 MEDIUM |
| Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware. | |||||
| CVE-2024-33036 | 1 Qualcomm | 104 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 101 more | 2024-12-11 | N/A | 6.7 MEDIUM |
| Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. | |||||
| CVE-2024-33012 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | |||||