Search Results (466 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-21629 1 Qualcomm 424 205, 205 Firmware, 215 and 421 more 2025-08-11 6.8 Medium
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
CVE-2023-33018 1 Qualcomm 527 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 524 more 2025-08-11 7.8 High
Memory corruption while using the UIM diag command to get the operators name.
CVE-2023-33017 1 Qualcomm 554 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 551 more 2025-08-11 7.8 High
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
CVE-2023-43522 1 Qualcomm 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more 2025-08-11 7.5 High
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
CVE-2023-33113 1 Qualcomm 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more 2025-08-11 8.4 High
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2025-08-11 8.4 High
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2024-33048 1 Qualcomm 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more 2025-08-11 7.5 High
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2023-33023 1 Qualcomm 636 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 633 more 2025-08-11 8.4 High
Memory corruption while processing finish_sign command to pass a rsp buffer.
CVE-2024-33049 1 Qualcomm 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more 2025-08-11 7.5 High
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
CVE-2023-28580 1 Qualcomm 88 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 85 more 2025-08-11 6.7 Medium
Memory corruption in WLAN Host while setting the PMK length in PMK length in internal cache.
CVE-2023-28586 1 Qualcomm 626 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 623 more 2025-08-11 6 Medium
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
CVE-2024-21480 1 Qualcomm 230 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 227 more 2025-08-11 7.3 High
Memory corruption while playing audio file having large-sized input buffer.
CVE-2023-24851 1 Qualcomm 382 Ar8035, Ar8035 Firmware, Csr8811 and 379 more 2025-08-11 7.8 High
Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
CVE-2023-33062 1 Qualcomm 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more 2025-08-11 7.5 High
Transient DOS in WLAN Firmware while parsing a BTM request.
CVE-2024-43057 1 Qualcomm 306 Ar8035, Ar8035 Firmware, C-v2x 9150 and 303 more 2025-08-11 7.8 High
Memory corruption while processing command in Glink linux.
CVE-2023-28579 1 Qualcomm 69 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 66 more 2025-08-11 6.7 Medium
Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length.
CVE-2023-43514 1 Qualcomm 167 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 164 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
CVE-2023-28545 1 Qualcomm 408 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 405 more 2025-08-11 8.2 High
Memory corruption in TZ Secure OS while loading an app ELF.
CVE-2023-33117 1 Qualcomm 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more 2025-08-11 7.8 High
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.