Total
595 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-33036 | 1 Qualcomm | 104 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6800 and 101 more | 2024-12-11 | N/A | 6.7 MEDIUM |
| Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. | |||||
| CVE-2024-33012 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | |||||
| CVE-2024-33011 | 1 Qualcomm | 498 Ar8035, Ar8035 Firmware, Ar9380 and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. | |||||
| CVE-2024-33010 | 1 Qualcomm | 496 Ar8035, Ar8035 Firmware, Ar9380 and 493 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while parsing fragments of MBSSID IE from beacon frame. | |||||
| CVE-2024-21479 | 1 Qualcomm | 190 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 187 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS during music playback of ALAC content. | |||||
| CVE-2024-23353 | 1 Qualcomm | 498 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 495 more | 2024-11-26 | N/A | 7.5 HIGH |
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | |||||
| CVE-2021-30299 | 1 Qualcomm | 168 Apq8096au, Apq8096au Firmware, Ar8031 and 165 more | 2024-11-25 | N/A | 6.7 MEDIUM |
| Possible out of bound access in audio module due to lack of validation of user provided input. | |||||
| CVE-2024-23373 | 1 Qualcomm | 444 205 Mobile Platform, 205 Mobile Platform Firmware, 215 Mobile Platform and 441 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | |||||
| CVE-2024-23368 | 1 Qualcomm | 686 Apq8064au, Apq8064au Firmware, Aqt1000 and 683 more | 2024-11-21 | N/A | 7.8 HIGH |
| Memory corruption when allocating and accessing an entry in an SMEM partition. | |||||
| CVE-2024-21465 | 1 Qualcomm | 518 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 515 more | 2024-11-21 | N/A | 7.8 HIGH |
| Memory corruption while processing key blob passed by the user. | |||||
| CVE-2024-21462 | 1 Qualcomm | 622 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 619 more | 2024-11-21 | N/A | 7.1 HIGH |
| Transient DOS while loading the TA ELF file. | |||||
| CVE-2024-21461 | 1 Qualcomm | 626 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 623 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption while performing finish HMAC operation when context is freed by keymaster. | |||||
| CVE-2023-33040 | 1 Qualcomm | 288 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 285 more | 2024-11-21 | N/A | 7.5 HIGH |
| Transient DOS in Data Modem during DTLS handshake. | |||||
| CVE-2023-33038 | 1 Qualcomm | 288 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 285 more | 2024-11-21 | N/A | 6.7 MEDIUM |
| Memory corruption while receiving a message in Bus Socket Transport Server. | |||||
| CVE-2023-33033 | 1 Qualcomm | 528 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 525 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption in Audio during playback with speaker protection. | |||||
| CVE-2023-33032 | 1 Qualcomm | 234 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 231 more | 2024-11-21 | N/A | 9.3 CRITICAL |
| Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. | |||||
| CVE-2023-33030 | 1 Qualcomm | 596 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 593 more | 2024-11-21 | N/A | 9.3 CRITICAL |
| Memory corruption in HLOS while running playready use-case. | |||||
| CVE-2023-33021 | 1 Qualcomm | 336 Apq8064au, Apq8064au Firmware, Aqt1000 and 333 more | 2024-11-21 | N/A | 8.4 HIGH |
| Memory corruption in Graphics while processing user packets for command submission. | |||||
| CVE-2023-28584 | 1 Qualcomm | 144 Aqt1000, Aqt1000 Firmware, Csrb31024 and 141 more | 2024-11-21 | N/A | 7.5 HIGH |
| Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA). | |||||
| CVE-2023-28577 | 1 Qualcomm | 62 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 59 more | 2024-11-21 | N/A | 6.7 MEDIUM |
| In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address. | |||||