Vulnerabilities (CVE)

Filtered by CWE-126
Total 379 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2025-27055 1 Qualcomm 80 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 77 more 2025-08-11 N/A 7.8 HIGH
Memory corruption during the image encoding process.
CVE-2023-33026 1 Qualcomm 390 Ar8035, Ar8035 Firmware, Ar9380 and 387 more 2025-08-11 N/A 7.5 HIGH
Transient DOS in WLAN Firmware while parsing a NAN management frame.
CVE-2024-33047 1 Qualcomm 48 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 45 more 2025-08-11 N/A 8.4 HIGH
Memory corruption when the captureRead QDCM command is invoked from user-space.
CVE-2023-33098 1 Qualcomm 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
CVE-2025-21449 1 Qualcomm 370 315 5g Iot, 315 5g Iot Firmware, Apq8017 and 367 more 2025-08-11 N/A 7.5 HIGH
Transient DOS may occur while processing malformed length field in SSID IEs.
CVE-2024-33049 1 Qualcomm 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
CVE-2023-33062 1 Qualcomm 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more 2025-08-11 N/A 7.5 HIGH
Transient DOS in WLAN Firmware while parsing a BTM request.
CVE-2024-33050 1 Qualcomm 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2023-43533 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 473 more 2025-08-11 N/A 7.5 HIGH
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.
CVE-2023-28541 1 Qualcomm 398 Aqt1000, Aqt1000 Firmware, Ar8031 and 395 more 2025-08-11 N/A 7.8 HIGH
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
CVE-2023-43528 1 Qualcomm 182 Ar8035, Ar8035 Firmware, C-v2x 9150 and 179 more 2025-08-11 N/A 6.1 MEDIUM
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
CVE-2024-33057 1 Qualcomm 342 Ar8035, Ar8035 Firmware, Csr8811 and 339 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2024-43056 1 Qualcomm 384 Aqt1000, Aqt1000 Firmware, Ar8035 and 381 more 2025-08-11 N/A 5.5 MEDIUM
Transient DOS during hypervisor virtual I/O operation in a virtual machine.
CVE-2023-28571 1 Qualcomm 172 8098, 8098 Firmware, 8998 and 169 more 2025-08-11 N/A 6.1 MEDIUM
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
CVE-2024-33073 1 Qualcomm 318 Ar8035, Ar8035 Firmware, Csr8811 and 315 more 2025-08-11 N/A 8.2 HIGH
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2025-21454 1 Qualcomm 384 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 381 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while processing received beacon frame.
CVE-2024-38397 1 Qualcomm 232 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 229 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while parsing probe response and assoc response frame.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 N/A 8.2 HIGH
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
CVE-2024-33051 1 Qualcomm 578 315 5g Iot, 315 5g Iot Firmware, 9206 Lte and 575 more 2025-08-11 N/A 7.5 HIGH
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2025-21427 1 Qualcomm 358 205 Mobile, 205 Mobile Firmware, 215 Mobile and 355 more 2025-08-11 N/A 8.2 HIGH
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.