Search Results (124 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-21475 1 Qualcomm 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more 2025-08-11 7.8 High
Memory corruption when the payload received from firmware is not as per the expected protocol size.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 8.2 High
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
CVE-2024-33060 1 Qualcomm 540 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 537 more 2025-08-11 8.4 High
Memory corruption when two threads try to map and unmap a single node simultaneously.
CVE-2023-22385 1 Qualcomm 482 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 479 more 2025-08-11 8.2 High
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
CVE-2023-43529 1 Qualcomm 322 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 319 more 2025-08-11 7.5 High
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.
CVE-2023-43518 1 Qualcomm 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more 2025-08-11 7.3 High
Memory corruption in video while parsing invalid mp2 clip.
CVE-2023-33120 1 Qualcomm 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more 2025-08-11 7.8 High
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
CVE-2023-43511 1 Qualcomm 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more 2025-08-11 7.5 High
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2025-08-11 8.4 High
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2024-33042 1 Qualcomm 456 205, 205 Firmware, 215 and 453 more 2025-08-11 7.8 High
Memory corruption when Alternative Frequency offset value is set to 255.
CVE-2024-33052 1 Qualcomm 456 205 Mobile, 205 Mobile Firmware, 215 Mobile and 453 more 2025-08-11 7.8 High
Memory corruption when user provides data for FM HCI command control operations.
CVE-2023-33088 1 Qualcomm 612 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 609 more 2025-08-11 8.4 High
Memory corruption when processing cmd parameters while parsing vdev.
CVE-2023-43536 1 Qualcomm 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more 2025-08-11 7.5 High
Transient DOS while parse fils IE with length equal to 1.
CVE-2023-24847 1 Qualcomm 514 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 511 more 2025-08-11 7.5 High
Transient DOS in Modem while allocating DSM items.
CVE-2023-33086 1 Qualcomm 314 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 311 more 2025-08-11 7.5 High
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.
CVE-2024-21468 1 Qualcomm 460 205 Mobile, 205 Mobile Firmware, 215 Mobile and 457 more 2025-08-11 8.4 High
Memory corruption when there is failed unmap operation in GPU.
CVE-2023-33066 1 Qualcomm 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more 2025-08-11 8.4 High
Memory corruption in Audio while processing RT proxy port register driver.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-33062 1 Qualcomm 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more 2025-08-11 7.5 High
Transient DOS in WLAN Firmware while parsing a BTM request.
CVE-2024-33051 1 Qualcomm 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more 2025-08-11 7.5 High
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.