Qualcomm Security Vulnerabilities (CVEs)

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in affected Qualcomm WLAN Host systems by sending specially crafted f...

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in affected wireless devices by sending specially crafted management ...

This CVE describes a buffer overflow vulnerability in Qualcomm modem firmware that allows memory corruption when processing WMI commands. Attackers co...

This vulnerability allows memory corruption in Qualcomm's User Identity Module due to an integer overflow that leads to buffer overflow when processin...

CVE-2022-33243 is a memory corruption vulnerability in Qualcomm's Inter-Processor Communication (IPC) subsystem due to improper access control. This a...

This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read when processing IPv4 packets. It affects...

CVE-2022-25735 is a denial-of-service vulnerability in Qualcomm modems where missing null pointer checks when processing TCP/UDP packets can cause cra...

CVE-2022-25733 is a null pointer dereference vulnerability in Qualcomm modem firmware that allows denial of service attacks. When processing specially...

CVE-2022-25728 is a buffer over-read vulnerability in Qualcomm modem firmware that allows information disclosure when processing DNS server responses....

This is a use-after-free vulnerability in Qualcomm Snapdragon audio components that allows memory corruption. Attackers could potentially execute arbi...

This vulnerability allows memory corruption through a double free error when parsing malformed 3gp video files with invalid metadata atoms. It affects...

This vulnerability allows memory corruption when processing QCP audio files due to insufficient length validation in Qualcomm Snapdragon chipsets. Att...

This vulnerability allows memory corruption via buffer overflow when parsing DSF audio file headers with corrupted channel counts in Qualcomm Snapdrag...

This is a use-after-free vulnerability in Qualcomm Snapdragon chipsets that allows attackers to execute arbitrary code or cause denial of service. It ...

This vulnerability is an out-of-bounds read in the WLAN HOST component of Qualcomm Snapdragon chipsets due to improper length checking. It affects mul...

This is a use-after-free vulnerability in Qualcomm's kgsl graphics driver that occurs due to a race condition when closing fence file descriptors whil...

This vulnerability allows memory corruption in Bluetooth controllers on Qualcomm Snapdragon chipsets due to improper length validation when processing...

This is a buffer overflow vulnerability in Qualcomm's Snapdragon chipsets affecting GATT multi-notification functionality. Attackers can exploit this ...

This vulnerability allows a malicious Android application (APK) to load a specially crafted model into the Qualcomm CDSP (Compute DSP), potentially co...

This vulnerability allows a user with standard permissions to access protected graphics memory regions due to improper access control in register conf...

This vulnerability is a buffer overflow in Qualcomm Snapdragon chipsets that could allow attackers to execute arbitrary code or cause denial of servic...

This vulnerability is a buffer over-read in Qualcomm Snapdragon chipsets when parsing ID3 tags in media files. It allows attackers to read memory beyo...

This vulnerability in Qualcomm Snapdragon chipsets involves improper memory allocation during counter check DLM handling, which can cause denial of se...

This vulnerability allows attackers to bypass authentication in Qualcomm Snapdragon chipsets by exploiting improper timeout-based verification in iden...

This CVE describes a buffer over-read vulnerability in Qualcomm Snapdragon chipsets when processing NR system information messages. Attackers could po...

This vulnerability allows attackers to read memory beyond intended boundaries due to improper certificate chain validation in Qualcomm Snapdragon chip...

This vulnerability allows attackers to cause denial of service or potentially execute arbitrary code by sending a specially crafted RRC connection rec...

This vulnerability allows attackers to execute arbitrary code or cause denial of service on Qualcomm Snapdragon devices by sending specially crafted D...

This vulnerability in Qualcomm Snapdragon chipsets allows memory corruption due to insufficient validation of MBN header size against input buffer. At...

This CVE describes a use-after-free vulnerability in Qualcomm Snapdragon chipsets where DRM file status isn't properly checked after file structure is...

This vulnerability allows unauthorized access to secure memory space in Qualcomm Snapdragon chipsets due to improper access control checks during devi...

This vulnerability in Qualcomm Snapdragon chipsets allows attackers to execute arbitrary code or cause denial of service through a use-after-free cond...

This vulnerability allows attackers to read memory beyond intended boundaries in Qualcomm Snapdragon chipsets due to improper WMI message length calcu...

This vulnerability allows an attacker to write data beyond allocated memory bounds in Qualcomm Snapdragon chipsets due to improper validation of timer...

This vulnerability allows attackers to read memory beyond intended boundaries during Wi-Fi SSID information element parsing when using DFS channels on...

This vulnerability in Qualcomm Snapdragon chipsets allows attackers to trigger a denial-of-service condition via improper validation of Over-The-Air (...

This vulnerability in Qualcomm Snapdragon chipsets allows attackers to trigger an assertion failure due to improper validation of TCI configuration. I...

This vulnerability allows authenticated users to bypass face authentication on affected Qualcomm Snapdragon devices due to improper secure memory clea...

This vulnerability allows attackers to cause denial of service or potentially execute arbitrary code by exploiting a null pointer dereference in Qualc...