Search Results (245 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-43546 1 Qualcomm 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more 2025-08-11 8.4 High
Memory corruption while invoking HGSL IOCTL context create.
CVE-2024-21471 1 Qualcomm 350 205 Mobile, 205 Mobile Firmware, 215 Mobile and 347 more 2025-08-11 8.4 High
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
CVE-2023-33115 1 Qualcomm 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more 2025-08-11 7.8 High
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2024-33060 1 Qualcomm 540 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 537 more 2025-08-11 8.4 High
Memory corruption when two threads try to map and unmap a single node simultaneously.
CVE-2024-45558 1 Qualcomm 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more 2025-08-11 7.5 High
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
CVE-2023-43550 1 Qualcomm 270 Ar8035, Ar8035 Firmware, Csra6620 and 267 more 2025-08-11 7.8 High
Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.
CVE-2023-43530 1 Qualcomm 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more 2025-08-11 5.9 Medium
Memory corruption in HLOS while checking for the storage type.
CVE-2024-33051 1 Qualcomm 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more 2025-08-11 7.5 High
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-33045 1 Qualcomm 385 Ar8035, Ar8035 Firmware, Csra6620 and 382 more 2025-08-11 8.4 High
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2023-43547 1 Qualcomm 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
CVE-2024-33048 1 Qualcomm 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more 2025-08-11 7.5 High
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2024-23354 1 Qualcomm 160 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 157 more 2025-08-11 8.4 High
Memory corruption when the IOCTL call is interrupted by a signal.
CVE-2024-43051 1 Qualcomm 488 Aqt1000, Aqt1000 Firmware, Ar8031 and 485 more 2025-08-11 5.5 Medium
Information disclosure while deriving keys for a session for any Widevine use case.
CVE-2023-33111 1 Qualcomm 172 Ar8035, Ar8035 Firmware, C-v2x 9150 and 169 more 2025-08-11 5.5 Medium
Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.
CVE-2023-43531 1 Qualcomm 256 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 253 more 2025-08-11 8.4 High
Memory corruption while verifying the serialized header when the key pairs are generated.
CVE-2025-21445 1 Qualcomm 55 Qam8255p, Qam8255p Firmware, Qam8295p and 52 more 2025-07-21 7.8 High
Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host.
CVE-2024-45559 1 Qualcomm 46 Qam8255p, Qam8255p Firmware, Qam8295p and 43 more 2025-02-28 5.5 Medium
Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend.
CVE-2024-45555 1 Qualcomm 82 Msm8996au, Msm8996au Firmware, Qam8255p and 79 more 2025-02-28 8.4 High
Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.
CVE-2024-43064 1 Qualcomm 60 Qam8255p, Qam8255p Firmware, Qam8295p and 57 more 2025-02-28 7.5 High
Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.
CVE-2024-49838 1 Qualcomm 338 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 335 more 2025-02-05 8.2 High
Information disclosure while parsing the OCI IE with invalid length.