Total
84 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-33023 | 1 Qualcomm | 576 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 573 more | 2025-01-09 | N/A | 8.4 HIGH |
| Memory corruption while processing finish_sign command to pass a rsp buffer. | |||||
| CVE-2023-28547 | 1 Qualcomm | 604 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 601 more | 2025-01-09 | N/A | 8.4 HIGH |
| Memory corruption in SPS Application while requesting for public key in sorter TA. | |||||
| CVE-2024-33053 | 1 Qualcomm | 112 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6200 and 109 more | 2024-12-12 | N/A | 6.7 MEDIUM |
| Memory corruption when multiple threads try to unregister the CVP buffer at the same time. | |||||
| CVE-2024-33037 | 1 Qualcomm | 102 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 99 more | 2024-12-11 | N/A | 6.1 MEDIUM |
| Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware. | |||||
| CVE-2024-33036 | 1 Qualcomm | 104 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 101 more | 2024-12-11 | N/A | 6.7 MEDIUM |
| Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. | |||||
| CVE-2024-23356 | 1 Qualcomm | 420 Aqt1000, Aqt1000 Firmware, Ar8031 and 417 more | 2024-11-26 | N/A | 7.8 HIGH |
| Memory corruption during session sign renewal request calls in HLOS. | |||||
| CVE-2024-23353 | 1 Qualcomm | 498 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | |||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | |||||
| CVE-2024-21462 | 1 Qualcomm | 622 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 619 more | 2024-11-21 | N/A | 7.1 HIGH |
| Transient DOS while loading the TA ELF file. | |||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption while performing finish HMAC operation when context is freed by keymaster. | |||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-11-21 | N/A | 7.8 HIGH |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | |||||
| CVE-2023-33120 | 1 Qualcomm | 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more | 2024-11-21 | N/A | 7.8 HIGH |
| Memory corruption in Audio when memory map command is executed consecutively in ADSP. | |||||
| CVE-2023-33114 | 1 Qualcomm | 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. | |||||
| CVE-2023-33077 | 1 Qualcomm | 192 Aqt1000, Aqt1000 Firmware, Ar8035 and 189 more | 2024-11-21 | N/A | 6.7 MEDIUM |
| Memory corruption in HLOS while converting from authorization token to HIDL vector. | |||||
| CVE-2023-33070 | 1 Qualcomm | 204 Apq5053-aa, Apq5053-aa Firmware, Aqt1000 and 201 more | 2024-11-21 | N/A | 7.1 HIGH |
| Transient DOS in Automotive OS due to improper authentication to the secure IO calls. | |||||
| CVE-2023-33069 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2024-11-21 | N/A | 6.7 MEDIUM |
| Memory corruption in Audio while processing the calibration data returned from ACDB loader. | |||||
| CVE-2023-33068 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2024-11-21 | N/A | 6.7 MEDIUM |
| Memory corruption in Audio while processing IIR config data from AFE calibration block. | |||||
| CVE-2023-33067 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2024-11-21 | N/A | 6.7 MEDIUM |
| Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. | |||||
| CVE-2023-33065 | 1 Qualcomm | 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more | 2024-11-21 | N/A | 6.1 MEDIUM |
| Information disclosure in Audio while accessing AVCS services from ADSP payload. | |||||
| CVE-2023-33064 | 1 Qualcomm | 178 Aqt1000, Aqt1000 Firmware, Ar8035 and 175 more | 2024-11-21 | N/A | 5.5 MEDIUM |
| Transient DOS in Audio when invoking callback function of ASM driver. | |||||