📦 Snapdragon Xr2\+ Gen 1 Firmware

CVE-2023-28578 is a memory corruption vulnerability in Qualcomm Core Services that occurs when removing a single event listener. This allows attackers to potentially execute arbitrary code or cause de...

This vulnerability allows memory corruption in Qualcomm video firmware when processing manipulated payloads. Attackers could potentially execute arbitrary code or cause denial of service. Affects devi...

This vulnerability allows information disclosure when a User Equipment (UE) device receives RTP packets from the network. It affects mobile devices with Qualcomm chipsets that process RTP traffic. Att...

This vulnerability allows memory corruption when retrieving CBOR data from a Trusted Application (TA) in Qualcomm components. Attackers could potentially execute arbitrary code or cause denial of serv...

This CVE describes a memory corruption vulnerability in Qualcomm's secure file reading functionality. Attackers could exploit this to execute arbitrary code or cause denial of service. The vulnerabili...

This CVE describes a use-after-free vulnerability (CWE-416) in Qualcomm NPU driver APIs that can be triggered through concurrent calls, leading to memory corruption. It affects devices with Qualcomm c...

This vulnerability in Qualcomm components allows a denial-of-service attack when processing country information elements. It affects devices using Qualcomm chipsets, potentially causing temporary serv...

This vulnerability allows attackers to read sensitive memory contents when parsing malformed OCI (Oracle Call Interface) information elements with invalid length fields. It affects systems using Qualc...

This vulnerability allows memory corruption when two threads simultaneously map and unmap a single node in Qualcomm components. Successful exploitation could lead to arbitrary code execution or system...

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in affected Wi-Fi systems by sending specially crafted beacon frames with malformed TIM (Traffic Indication Map) Info...

CVE-2024-33042 is a memory corruption vulnerability in Qualcomm chipsets that occurs when the Alternative Frequency offset value is set to 255. This could allow attackers to execute arbitrary code or ...

CVE-2024-21476 is a memory corruption vulnerability in Qualcomm components where improper validation of user-supplied channel IDs can lead to arbitrary code execution. This affects devices using vulne...

CVE-2024-21468 is a use-after-free vulnerability in Qualcomm GPU drivers where failed memory unmapping operations can lead to memory corruption. This allows attackers to potentially execute arbitrary ...

This CVE describes a memory corruption vulnerability in the SPS Application's sorter Trusted Application (TA) when requesting public keys. Successful exploitation could allow attackers to execute arbi...

This vulnerability allows memory corruption when parsing QCP audio files with invalid chunk data sizes. Attackers could potentially execute arbitrary code or cause denial of service by tricking users ...

This vulnerability allows memory corruption in Qualcomm audio drivers when processing RT proxy port register operations. Attackers could potentially execute arbitrary code or cause denial of service o...

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when parsing WMI command parameters. Attackers could potentially execute arbitrary code or cause denial ...

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in Qualcomm WLAN firmware by sending specially crafted beacon frames with malformed MBSSID information elements. It a...

This vulnerability allows arbitrary memory overwrite when a virtual machine gets compromised during TX write operations, leading to memory corruption. It affects Qualcomm chipsets used in mobile devic...

This vulnerability allows memory corruption in Qualcomm WLAN Host software when parsing QMI response messages from firmware. Attackers could potentially execute arbitrary code or cause denial of servi...