Total
146 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-21631 | 1 Qualcomm | 320 205, 205 Firmware, 215 and 317 more | 2024-11-21 | N/A | 7.5 HIGH |
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. | |||||
CVE-2023-21629 | 1 Qualcomm | 424 205, 205 Firmware, 215 and 421 more | 2024-11-21 | N/A | 6.8 MEDIUM |
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. | |||||
CVE-2023-21624 | 1 Qualcomm | 134 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6800 and 131 more | 2024-11-21 | N/A | 6.2 MEDIUM |
Information disclosure in DSP Services while loading dynamic module. | |||||
CVE-2024-33014 | 1 Qualcomm | 650 315 5g Iot Modem, 315 5g Iot Modem Firmware, 860 Mobile Platform and 647 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing ESP IE from beacon/probe response frame. | |||||
CVE-2024-33015 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Csr8811 and 387 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. | |||||
CVE-2024-33024 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Csr8811 and 359 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. | |||||
CVE-2024-33018 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Csr8811 and 299 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. | |||||
CVE-2024-33026 | 1 Qualcomm | 330 Ar8035, Ar8035 Firmware, Csr8811 and 327 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. | |||||
CVE-2024-33023 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Csra6620 and 311 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events. | |||||
CVE-2024-33022 | 1 Qualcomm | 248 Ar8035, Ar8035 Firmware, Csra6620 and 245 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption while allocating memory in HGSL driver. | |||||
CVE-2024-33021 | 1 Qualcomm | 276 Ar8035, Ar8035 Firmware, Csra6620 and 273 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption while processing IOCTL call to set metainfo. | |||||
CVE-2024-33020 | 1 Qualcomm | 196 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 193 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while processing TID-to-link mapping IE elements. | |||||
CVE-2024-33019 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing the received TID-to-link mapping action frame. | |||||
CVE-2024-33028 | 1 Qualcomm | 276 Ar8035, Ar8035 Firmware, Csra6620 and 273 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released. | |||||
CVE-2024-33034 | 1 Qualcomm | 210 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 207 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time. | |||||
CVE-2024-38408 | 1 Qualcomm | 470 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 467 more | 2024-11-08 | N/A | 9.1 CRITICAL |
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | |||||
CVE-2024-38405 | 1 Qualcomm | 198 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 195 more | 2024-11-07 | N/A | 6.5 MEDIUM |
Transient DOS while processing the CU information from RNR IE. | |||||
CVE-2024-23385 | 1 Qualcomm | 188 205 Mobile Platform, 205 Mobile Platform Firmware, Apq8017 and 185 more | 2024-11-07 | N/A | 6.5 MEDIUM |
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE. | |||||
CVE-2024-38406 | 1 Qualcomm | 88 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 85 more | 2024-11-07 | N/A | 7.0 HIGH |
Memory corruption while handling IOCTL calls in JPEG Encoder driver. | |||||
CVE-2024-33032 | 1 Qualcomm | 138 C-v2x 9150, C-v2x 9150 Firmware, Fastconnect 6200 and 135 more | 2024-11-07 | N/A | 6.7 MEDIUM |
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it. |