Search Results (359 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-33112 1 Qualcomm 255 Ar8035, Ar8035 Firmware, Csra6620 and 252 more 2025-08-11 7.5 High
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
CVE-2023-33113 1 Qualcomm 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more 2025-08-11 8.4 High
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2025-08-11 8.4 High
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2023-33115 1 Qualcomm 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more 2025-08-11 7.8 High
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
CVE-2023-33117 1 Qualcomm 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more 2025-08-11 7.8 High
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.
CVE-2023-33118 1 Qualcomm 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more 2025-08-11 7.8 High
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.
CVE-2023-33120 1 Qualcomm 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more 2025-08-11 7.8 High
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
CVE-2024-33045 1 Qualcomm 385 Ar8035, Ar8035 Firmware, Csra6620 and 382 more 2025-08-11 8.4 High
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2024-45562 1 Qualcomm 160 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 157 more 2025-08-11 6.6 Medium
Memory corruption during concurrent access to server info object due to unprotected critical field.
CVE-2024-45558 1 Qualcomm 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more 2025-08-11 7.5 High
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
CVE-2024-38402 1 Qualcomm 362 Ar8035, Ar8035 Firmware, Csra6620 and 359 more 2025-08-11 7.8 High
Memory corruption while processing IOCTL call for getting group info.
CVE-2024-43057 1 Qualcomm 306 Ar8035, Ar8035 Firmware, C-v2x 9150 and 303 more 2025-08-11 7.8 High
Memory corruption while processing command in Glink linux.
CVE-2023-43529 1 Qualcomm 322 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 319 more 2025-08-11 7.5 High
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.
CVE-2023-43536 1 Qualcomm 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more 2025-08-11 7.5 High
Transient DOS while parse fils IE with length equal to 1.
CVE-2024-38401 1 Qualcomm 82 Ar8035, Ar8035 Firmware, C-v2x 9150 and 79 more 2025-08-11 7.8 High
Memory corruption while processing concurrent IOCTL calls.
CVE-2024-38397 1 Qualcomm 234 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 231 more 2025-08-11 7.5 High
Transient DOS while parsing probe response and assoc response frame.
CVE-2023-43552 1 Qualcomm 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more 2025-08-11 9.8 Critical
Memory corruption while processing MBSSID beacon containing several subelement IE.
CVE-2023-43551 1 Qualcomm 482 205 Mobile, 205 Mobile Firmware, 215 Mobile and 479 more 2025-08-11 9.1 Critical
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
CVE-2023-43550 1 Qualcomm 270 Ar8035, Ar8035 Firmware, Csra6620 and 267 more 2025-08-11 7.8 High
Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.
CVE-2024-21475 1 Qualcomm 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more 2025-08-11 7.8 High
Memory corruption when the payload received from firmware is not as per the expected protocol size.