Search Results (283 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-43536 1 Qualcomm 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more 2025-08-11 7.5 High
Transient DOS while parse fils IE with length equal to 1.
CVE-2023-33098 1 Qualcomm 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more 2025-08-11 7.5 High
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
CVE-2024-23369 1 Qualcomm 237 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 234 more 2025-08-11 7.8 High
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVE-2024-23354 1 Qualcomm 160 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 157 more 2025-08-11 8.4 High
Memory corruption when the IOCTL call is interrupted by a signal.
CVE-2025-27061 1 Qualcomm 689 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 686 more 2025-08-11 7.8 High
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
CVE-2023-33089 1 Qualcomm 456 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 453 more 2025-08-11 7.5 High
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
CVE-2023-43513 1 Qualcomm 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more 2025-08-11 7.8 High
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
CVE-2023-24843 1 Qualcomm 132 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 129 more 2025-08-11 7.5 High
Transient DOS in Modem while triggering a camping on an 5G cell.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 8.2 High
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
CVE-2023-24850 1 Qualcomm 412 Apq5053-aa, Apq5053-aa Firmware, Apq8017 and 409 more 2025-08-11 7.8 High
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
CVE-2023-24852 1 Qualcomm 542 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 539 more 2025-08-11 8.4 High
Memory Corruption in Core due to secure memory access by user while loading modem image.
CVE-2024-38402 1 Qualcomm 362 Ar8035, Ar8035 Firmware, Csra6620 and 359 more 2025-08-11 7.8 High
Memory corruption while processing IOCTL call for getting group info.
CVE-2023-33104 1 Qualcomm 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more 2025-08-11 7.5 High
Transient DOS while processing PDU Release command with a parameter PDU ID out of range.
CVE-2023-33101 1 Qualcomm 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more 2025-08-11 7.5 High
Transient DOS while processing DL NAS TRANSPORT message with payload length 0.
CVE-2023-33099 1 Qualcomm 208 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 205 more 2025-08-11 7.5 High
Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.
CVE-2023-33096 1 Qualcomm 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more 2025-08-11 7.5 High
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
CVE-2023-33095 1 Qualcomm 204 315 5g Iot Modem, 315 5g Iot Modem Firmware, Ar8035 and 201 more 2025-08-11 7.5 High
Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.
CVE-2023-33077 1 Qualcomm 192 Aqt1000, Aqt1000 Firmware, Ar8035 and 189 more 2025-08-11 6.7 Medium
Memory corruption in HLOS while converting from authorization token to HIDL vector.
CVE-2024-33038 1 Qualcomm 96 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 93 more 2025-08-11 7.8 High
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
CVE-2024-33050 1 Qualcomm 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more 2025-08-11 7.5 High
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.