Total
205 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-53014 | 1 Qualcomm | 502 215, 215 Firmware, 315 5g Iot Modem and 499 more | 2025-03-06 | N/A | 7.8 HIGH |
| Memory corruption may occur while validating ports and channels in Audio driver. | |||||
| CVE-2024-38426 | 1 Qualcomm | 328 205, 205 Firmware, 215 and 325 more | 2025-03-06 | N/A | 5.4 MEDIUM |
| While processing the authentication message in UE, improper authentication may lead to information disclosure. | |||||
| CVE-2021-1906 | 1 Qualcomm | 800 Apq8009, Apq8009 Firmware, Apq8009w and 797 more | 2025-02-18 | 2.1 LOW | 6.2 MEDIUM |
| Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | |||||
| CVE-2020-11261 | 1 Qualcomm | 798 Apq8009, Apq8009 Firmware, Apq8009w and 795 more | 2025-01-29 | 7.2 HIGH | 7.8 HIGH |
| Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | |||||
| CVE-2021-1905 | 1 Qualcomm | 792 Apq8009, Apq8009 Firmware, Apq8009w and 789 more | 2025-01-29 | 7.2 HIGH | 8.4 HIGH |
| Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | |||||
| CVE-2023-33107 | 1 Qualcomm | 484 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 481 more | 2025-01-27 | N/A | 8.4 HIGH |
| Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call. | |||||
| CVE-2023-33063 | 1 Qualcomm | 562 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 559 more | 2025-01-27 | N/A | 7.8 HIGH |
| Memory corruption in DSP Services during a remote call from HLOS to DSP. | |||||
| CVE-2023-43551 | 1 Qualcomm | 482 205 Mobile, 205 Mobile Firmware, 215 Mobile and 479 more | 2025-01-27 | N/A | 9.1 CRITICAL |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | |||||
| CVE-2024-21468 | 1 Qualcomm | 460 205 Mobile, 205 Mobile Firmware, 215 Mobile and 457 more | 2025-01-13 | N/A | 8.4 HIGH |
| Memory corruption when there is failed unmap operation in GPU. | |||||
| CVE-2023-33066 | 1 Qualcomm | 626 205 Mobile, 205 Mobile Firmware, 215 Mobile and 623 more | 2025-01-10 | N/A | 8.4 HIGH |
| Memory corruption in Audio while processing RT proxy port register driver. | |||||
| CVE-2023-33023 | 1 Qualcomm | 576 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 573 more | 2025-01-09 | N/A | 8.4 HIGH |
| Memory corruption while processing finish_sign command to pass a rsp buffer. | |||||
| CVE-2023-28547 | 1 Qualcomm | 604 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 601 more | 2025-01-09 | N/A | 8.4 HIGH |
| Memory corruption in SPS Application while requesting for public key in sorter TA. | |||||
| CVE-2024-33043 | 1 Qualcomm | 406 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 403 more | 2024-12-20 | N/A | 5.5 MEDIUM |
| Transient DOS while handling PS event when Program Service name length offset value is set to 255. | |||||
| CVE-2024-43052 | 1 Qualcomm | 182 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 179 more | 2024-12-12 | N/A | 7.8 HIGH |
| Memory corruption while processing API calls to NPU with invalid input. | |||||
| CVE-2024-23353 | 1 Qualcomm | 498 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | |||||
| CVE-2024-23357 | 1 Qualcomm | 484 215 Mobile Platform, 215 Mobile Platform Firmware, Apq8017 and 481 more | 2024-11-25 | N/A | 6.2 MEDIUM |
| Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus. | |||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | |||||
| CVE-2024-23368 | 1 Qualcomm | 686 Apq8064au, Apq8064au Firmware, Aqt1000 and 683 more | 2024-11-21 | N/A | 7.8 HIGH |
| Memory corruption when allocating and accessing an entry in an SMEM partition. | |||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption while performing finish HMAC operation when context is freed by keymaster. | |||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-11-21 | N/A | 7.8 HIGH |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | |||||