Search
Search Results (167 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-33068 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2025-08-11 | 6.7 Medium |
| Memory corruption in Audio while processing IIR config data from AFE calibration block. | ||||
| CVE-2023-33069 | 1 Qualcomm | 226 9206 Lte Modem, 9206 Lte Modem Firmware, Aqt1000 and 223 more | 2025-08-11 | 6.7 Medium |
| Memory corruption in Audio while processing the calibration data returned from ACDB loader. | ||||
| CVE-2023-33094 | 1 Qualcomm | 250 Ar8035, Ar8035 Firmware, Csra6620 and 247 more | 2025-08-11 | 8.4 High |
| Memory corruption while running VK synchronization with KASAN enabled. | ||||
| CVE-2023-33092 | 1 Qualcomm | 190 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 187 more | 2025-08-11 | 8.4 High |
| Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size. | ||||
| CVE-2023-24850 | 1 Qualcomm | 412 Apq5053-aa, Apq5053-aa Firmware, Apq8017 and 409 more | 2025-08-11 | 7.8 High |
| Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. | ||||
| CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | ||||
| CVE-2023-24849 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more | 2025-08-11 | 8.2 High |
| Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | ||||
| CVE-2023-28588 | 1 Qualcomm | 428 Apq8017, Apq8017 Firmware, Apq8064au and 425 more | 2025-08-11 | 7.5 High |
| Transient DOS in Bluetooth Host while rfc slot allocation. | ||||
| CVE-2023-43551 | 1 Qualcomm | 482 205 Mobile, 205 Mobile Firmware, 215 Mobile and 479 more | 2025-08-11 | 9.1 Critical |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | ||||
| CVE-2023-28587 | 1 Qualcomm | 380 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 377 more | 2025-08-11 | 7.8 High |
| Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level. | ||||
| CVE-2023-28586 | 1 Qualcomm | 626 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 623 more | 2025-08-11 | 6 Medium |
| Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. | ||||
| CVE-2023-24848 | 1 Qualcomm | 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more | 2025-08-11 | 8.2 High |
| Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | ||||
| CVE-2025-21468 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csra6620 and 299 more | 2025-08-11 | 7.8 High |
| Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. | ||||
| CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2025-08-11 | 7.5 High |
| Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | ||||
| CVE-2023-33115 | 1 Qualcomm | 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. | ||||
| CVE-2023-33113 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more | 2025-08-11 | 8.4 High |
| Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. | ||||
| CVE-2023-28578 | 1 Qualcomm | 680 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 677 more | 2025-08-11 | 9.3 Critical |
| Memory corruption in Core Services while executing the command for removing a single event listener. | ||||
| CVE-2023-33112 | 1 Qualcomm | 255 Ar8035, Ar8035 Firmware, Csra6620 and 252 more | 2025-08-11 | 7.5 High |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. | ||||
| CVE-2023-33117 | 1 Qualcomm | 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more | 2025-08-11 | 7.8 High |
| Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. | ||||
| CVE-2023-24847 | 1 Qualcomm | 514 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 511 more | 2025-08-11 | 7.5 High |
| Transient DOS in Modem while allocating DSM items. | ||||