Search
Search Results (291 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | ||||
| CVE-2023-43514 | 1 Qualcomm | 167 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 164 more | 2025-08-11 | 8.4 High |
| Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP. | ||||
| CVE-2023-43520 | 1 Qualcomm | 140 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 137 more | 2025-08-11 | 8.6 High |
| Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. | ||||
| CVE-2023-43521 | 1 Qualcomm | 154 Ar8035, Ar8035 Firmware, C-v2x 9150 and 151 more | 2025-08-11 | 6.7 Medium |
| Memory corruption when multiple listeners are being registered with the same file descriptor. | ||||
| CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2025-08-11 | 7.5 High |
| Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | ||||
| CVE-2023-43528 | 1 Qualcomm | 182 Ar8035, Ar8035 Firmware, C-v2x 9150 and 179 more | 2025-08-11 | 6.1 Medium |
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | ||||
| CVE-2023-28539 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Ar9380 and 311 more | 2025-08-11 | 6.6 Medium |
| Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command. | ||||
| CVE-2023-43530 | 1 Qualcomm | 316 Aqt1000, Aqt1000 Firmware, Ar8035 and 313 more | 2025-08-11 | 5.9 Medium |
| Memory corruption in HLOS while checking for the storage type. | ||||
| CVE-2023-43531 | 1 Qualcomm | 256 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 253 more | 2025-08-11 | 8.4 High |
| Memory corruption while verifying the serialized header when the key pairs are generated. | ||||
| CVE-2023-43533 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 473 more | 2025-08-11 | 7.5 High |
| Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame. | ||||
| CVE-2023-43534 | 1 Qualcomm | 132 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 129 more | 2025-08-11 | 8.6 High |
| Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point. | ||||
| CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2025-08-11 | 7.5 High |
| Transient DOS while parse fils IE with length equal to 1. | ||||
| CVE-2023-43537 | 1 Qualcomm | 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more | 2025-08-11 | 6.5 Medium |
| Information disclosure while handling T2LM Action Frame in WLAN Host. | ||||
| CVE-2023-43542 | 1 Qualcomm | 418 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 415 more | 2025-08-11 | 7.8 High |
| Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked. | ||||
| CVE-2024-21481 | 1 Qualcomm | 333 Aqt1000, Aqt1000 Firmware, Ar8035 and 330 more | 2025-08-11 | 8.4 High |
| Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. | ||||
| CVE-2024-21475 | 1 Qualcomm | 472 215 Mobile, 215 Mobile Firmware, 315 5g Iot Modem and 469 more | 2025-08-11 | 7.8 High |
| Memory corruption when the payload received from firmware is not as per the expected protocol size. | ||||
| CVE-2024-21480 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 227 more | 2025-08-11 | 7.3 High |
| Memory corruption while playing audio file having large-sized input buffer. | ||||
| CVE-2024-23369 | 1 Qualcomm | 237 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 234 more | 2025-08-11 | 7.8 High |
| Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. | ||||
| CVE-2024-33048 | 1 Qualcomm | 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | ||||
| CVE-2024-33050 | 1 Qualcomm | 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | ||||