Search Results (339 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-28547 1 Qualcomm 667 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 664 more 2025-08-11 8.4 High
Memory corruption in SPS Application while requesting for public key in sorter TA.
CVE-2023-33057 1 Qualcomm 202 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 199 more 2025-08-11 7.5 High
Transient DOS in Multi-Mode Call Processor while processing UE policy container.
CVE-2023-28554 1 Qualcomm 296 Aqt1000, Aqt1000 Firmware, Ar9380 and 293 more 2025-08-11 6.1 Medium
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
CVE-2023-28556 1 Qualcomm 452 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 449 more 2025-08-11 7.1 High
Cryptographic issue in HLOS during key management.
CVE-2023-43522 1 Qualcomm 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more 2025-08-11 7.5 High
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
CVE-2023-43511 1 Qualcomm 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more 2025-08-11 7.5 High
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 8.2 High
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
CVE-2023-33111 1 Qualcomm 172 Ar8035, Ar8035 Firmware, C-v2x 9150 and 169 more 2025-08-11 5.5 Medium
Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.
CVE-2023-43529 1 Qualcomm 322 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 319 more 2025-08-11 7.5 High
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.
CVE-2023-24847 1 Qualcomm 514 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 511 more 2025-08-11 7.5 High
Transient DOS in Modem while allocating DSM items.
CVE-2023-24843 1 Qualcomm 132 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 129 more 2025-08-11 7.5 High
Transient DOS in Modem while triggering a camping on an 5G cell.
CVE-2024-21480 1 Qualcomm 230 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 227 more 2025-08-11 7.3 High
Memory corruption while playing audio file having large-sized input buffer.
CVE-2023-24854 1 Qualcomm 326 215, 215 Firmware, Ar8035 and 323 more 2025-08-11 7.8 High
Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.
CVE-2023-22385 1 Qualcomm 482 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 479 more 2025-08-11 8.2 High
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
CVE-2023-33104 1 Qualcomm 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more 2025-08-11 7.5 High
Transient DOS while processing PDU Release command with a parameter PDU ID out of range.
CVE-2024-33051 1 Qualcomm 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more 2025-08-11 7.5 High
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2023-22383 1 Qualcomm 118 Aqt1000, Aqt1000 Firmware, C-v2x 9150 and 115 more 2025-08-11 6.7 Medium
Memory Corruption in camera while installing a fd for a particular DMA buffer.
CVE-2023-21673 1 Qualcomm 326 Aqt1000, Aqt1000 Firmware, Ar8035 and 323 more 2025-08-11 8.7 High
Improper Access to the VM resource manager can lead to Memory Corruption.
CVE-2023-33101 1 Qualcomm 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more 2025-08-11 7.5 High
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.