Total
241 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-47401 | 1 Qualcomm | 490 Ar8035, Ar8035 Firmware, Cologne and 487 more | 2026-05-06 | N/A | 6.5 MEDIUM |
| Transient DOS when processing target power rate tables during channel configuration. | |||||
| CVE-2025-47403 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Cologne and 511 more | 2026-05-06 | N/A | 6.5 MEDIUM |
| Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming. | |||||
| CVE-2025-47404 | 1 Qualcomm | 376 215 Mobile, 215 Mobile Firmware, 5g Fixed Wireless Access and 373 more | 2026-05-06 | N/A | 6.5 MEDIUM |
| Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified. | |||||
| CVE-2025-47406 | 1 Qualcomm | 62 Cologne, Cologne Firmware, Fastconnect 6700 and 59 more | 2026-05-06 | N/A | 6.1 MEDIUM |
| Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. | |||||
| CVE-2026-24082 | 1 Qualcomm | 352 Ar8031, Ar8031 Firmware, Ar8035 and 349 more | 2026-05-06 | N/A | 7.8 HIGH |
| Memory Corruption when copying data from a freed source while executing performance counter deselect operation. | |||||
| CVE-2025-47392 | 1 Qualcomm | 308 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Ar8035 and 305 more | 2026-04-08 | N/A | 8.8 HIGH |
| Memory corruption when decoding corrupted satellite data files with invalid signature offsets. | |||||
| CVE-2025-47391 | 1 Qualcomm | 202 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 199 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory corruption while processing a frame request from user. | |||||
| CVE-2025-47390 | 1 Qualcomm | 58 Cologne, Cologne Firmware, Fastconnect 6700 and 55 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory corruption while preprocessing IOCTL request in JPEG driver. | |||||
| CVE-2025-47389 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Cologne and 359 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation. | |||||
| CVE-2026-21374 | 1 Qualcomm | 108 Aqt1000, Aqt1000 Firmware, Cologne and 105 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation. | |||||
| CVE-2026-21373 | 1 Qualcomm | 108 Aqt1000, Aqt1000 Firmware, Cologne and 105 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when accessing an output buffer without validating its size during IOCTL processing. | |||||
| CVE-2026-21372 | 1 Qualcomm | 56 Cologne, Cologne Firmware, Fastconnect 6700 and 53 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations. | |||||
| CVE-2026-21371 | 1 Qualcomm | 104 Aqt1000, Aqt1000 Firmware, Cologne and 101 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when retrieving output buffer with insufficient size validation. | |||||
| CVE-2026-21378 | 1 Qualcomm | 102 Aqt1000, Aqt1000 Firmware, Cologne and 99 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver. | |||||
| CVE-2026-21376 | 1 Qualcomm | 108 Aqt1000, Aqt1000 Firmware, Cologne and 105 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver. | |||||
| CVE-2026-21375 | 1 Qualcomm | 70 Cologne, Cologne Firmware, Fastconnect 6700 and 67 more | 2026-04-08 | N/A | 7.8 HIGH |
| Memory Corruption when accessing an output buffer without validating its size during IOCTL processing. | |||||
| CVE-2024-33065 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2026-03-23 | N/A | 8.4 HIGH |
| Memory corruption while taking snapshot when an offset variable is set by camera driver. | |||||
| CVE-2025-47379 | 1 Qualcomm | 356 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Ar8031 and 353 more | 2026-03-05 | N/A | 7.8 HIGH |
| Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources. | |||||
| CVE-2025-47384 | 1 Qualcomm | 86 5g Fixed Wireless Access Platform, 5g Fixed Wireless Access Platform Firmware, Fastconnect 6200 and 83 more | 2026-03-05 | N/A | 6.5 MEDIUM |
| Transient DOS when MAC configures config id greater than supported maximum value. | |||||
| CVE-2025-47386 | 1 Qualcomm | 340 Ar8031, Ar8031 Firmware, Ar8035 and 337 more | 2026-03-05 | N/A | 7.8 HIGH |
| Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs. | |||||