Search Results (611 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-22667 1 Qualcomm 411 205, 205 Firmware, 215 and 408 more 2025-08-11 8.4 High
Memory Corruption in Audio while allocating the ion buffer during the music playback.
CVE-2023-33114 1 Qualcomm 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more 2025-08-11 8.4 High
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
CVE-2023-43530 1 Qualcomm 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more 2025-08-11 5.9 Medium
Memory corruption in HLOS while checking for the storage type.
CVE-2024-33057 1 Qualcomm 356 Ar8035, Ar8035 Firmware, Csr8811 and 353 more 2025-08-11 7.5 High
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2023-43542 1 Qualcomm 418 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 415 more 2025-08-11 7.8 High
Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.
CVE-2023-43548 1 Qualcomm 284 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 281 more 2025-08-11 7.3 High
Memory corruption while parsing qcp clip with invalid chunk data size.
CVE-2023-33023 1 Qualcomm 636 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 633 more 2025-08-11 8.4 High
Memory corruption while processing finish_sign command to pass a rsp buffer.
CVE-2023-28541 1 Qualcomm 426 Aqt1000, Aqt1000 Firmware, Ar8031 and 423 more 2025-08-11 7.8 High
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
CVE-2024-33073 1 Qualcomm 320 Ar8035, Ar8035 Firmware, Csr8811 and 317 more 2025-08-11 8.2 High
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2023-33029 1 Qualcomm 264 Apq8009, Apq8009 Firmware, Ar8035 and 261 more 2025-08-11 8.4 High
Memory corruption in DSP Service during a remote call from HLOS to DSP.
CVE-2023-33080 1 Qualcomm 733 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 730 more 2025-08-11 7.5 High
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
CVE-2023-33026 1 Qualcomm 401 Ar8035, Ar8035 Firmware, Ar9380 and 398 more 2025-08-11 7.5 High
Transient DOS in WLAN Firmware while parsing a NAN management frame.
CVE-2023-33017 1 Qualcomm 554 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 551 more 2025-08-11 7.8 High
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-33028 1 Qualcomm 352 Ar8035, Ar8035 Firmware, Ar9380 and 349 more 2025-08-11 9.8 Critical
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
CVE-2023-43514 1 Qualcomm 167 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 164 more 2025-08-11 8.4 High
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
CVE-2023-33113 1 Qualcomm 254 Ar8035, Ar8035 Firmware, Csra6620 and 251 more 2025-08-11 8.4 High
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
CVE-2023-24851 1 Qualcomm 382 Ar8035, Ar8035 Firmware, Csr8811 and 379 more 2025-08-11 7.8 High
Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
CVE-2023-28587 1 Qualcomm 380 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 377 more 2025-08-11 7.8 High
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
CVE-2023-33112 1 Qualcomm 255 Ar8035, Ar8035 Firmware, Csra6620 and 252 more 2025-08-11 7.5 High
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.