Qualcomm Security Vulnerabilities (CVEs)

This vulnerability allows remote attackers to cause memory corruption by sending large input data through a communication interface. It affects system...

This vulnerability allows information disclosure when processing messages from clients with invalid payloads. It affects systems running Qualcomm soft...

This vulnerability allows memory corruption when triggering a subsystem crash with an out-of-range identifier, potentially leading to arbitrary code e...

This vulnerability allows memory corruption during device management message processing in Qualcomm components, potentially enabling remote code execu...

This vulnerability allows information disclosure when user-level drivers perform QFPROM read/write operations on Fuse regions in Qualcomm chipsets. It...

This CVE describes a memory corruption vulnerability in Qualcomm's GVM (Guest Virtual Machine) request processing. Attackers could exploit this to exe...

This vulnerability allows memory corruption during audio streaming operations on Qualcomm devices, potentially enabling attackers to execute arbitrary...

This vulnerability involves memory corruption while processing a GP command response in Qualcomm components, potentially allowing attackers to execute...

This CVE describes a memory corruption vulnerability in Qualcomm's encryption/decryption command processing. Attackers could exploit this to execute a...

This vulnerability allows information disclosure through the diagHal interface when registering commands from clients. It affects Qualcomm devices usi...

This vulnerability allows memory corruption through improper handling of remote procedure IOCTL calls, potentially leading to arbitrary code execution...

This CVE describes a memory corruption vulnerability in Qualcomm components that occurs while processing user buffers. Attackers could exploit this to...

This CVE describes a memory corruption vulnerability in Qualcomm components that occurs while processing escape calls. Attackers could exploit this to...

This vulnerability allows a denial-of-service condition in Qualcomm hardware when multiple profiles run concurrently with QHS (Qualcomm High-Speed) en...

This vulnerability allows memory corruption when processing image encoding completion events in Qualcomm components. Attackers could potentially execu...

This vulnerability allows memory corruption when processing escape commands from userspace, potentially leading to arbitrary code execution or system ...

This vulnerability allows memory corruption during SCM (System Control Manager) calls in Qualcomm components, potentially enabling privilege escalatio...

This vulnerability allows memory corruption in Qualcomm's PlayReady APP implementation when processing TA commands, potentially enabling arbitrary cod...

This vulnerability allows attackers to cause memory corruption through improper handling of IOCTL calls in Qualcomm camera platform drivers. Successfu...

This vulnerability in Qualcomm video drivers allows attackers to read sensitive information from kernel memory while processing batch commands. It aff...

This vulnerability allows an attacker to cause a temporary denial of service (DoS) by sending specially crafted video packets to affected Qualcomm dev...

This CVE describes an information disclosure vulnerability in Qualcomm hypervisor logs that could expose sensitive system information. The vulnerabili...

This CVE describes a memory corruption vulnerability in Qualcomm's DMM/WARPNCC driver when processing specific IOCTL calls. Successful exploitation co...

This vulnerability allows memory corruption when handling invalid inputs during application info setup. Attackers could potentially execute arbitrary ...

A memory corruption vulnerability in Qualcomm image encoding components allows attackers to execute arbitrary code or cause denial of service. This af...

This vulnerability allows attackers to cause a denial of service (DoS) condition by sending specially crafted EPTM test control messages. It affects s...

This vulnerability allows memory corruption through a double-free condition when multiple threads race to set the timestamp store. Attackers could pot...

This CVE describes a memory corruption vulnerability in Qualcomm FE driver components that could allow attackers to execute arbitrary code or cause de...

This CVE describes a use-after-free vulnerability in Qualcomm camera kernel drivers where improper reference counting of CPU buffers during config_dev...

This vulnerability allows memory corruption when loading a PIL authenticated VM image without proper cache coherency maintenance. Attackers could pote...

This CVE-2025-27030 vulnerability allows unauthorized information disclosure when calibration data is invoked from user space to update firmware size....

This vulnerability allows attackers to read sensitive information from memory when User Equipment (UE) processes malformed RTP packets with manipulate...

This CVE describes a cryptographic vulnerability in RSA PKCS padding decoding that could allow attackers to decrypt sensitive data or forge digital si...

This vulnerability allows memory corruption during Trusted Virtual Machine handshake parameter passing, potentially enabling arbitrary code execution ...

This CVE describes a memory corruption vulnerability in Qualcomm components that occurs when processing simultaneous requests via an escape path. Succ...

This vulnerability allows attackers to cause a Denial of Service (DoS) condition by exploiting a flaw in the Neighbor Discovery Protocol (NDP) instanc...

This vulnerability allows information disclosure when processing Ethernet AVB (Audio Video Bridging) packets with invalid header lengths on Qualcomm c...

This vulnerability allows memory corruption when processing DDI command calls in Qualcomm components, potentially enabling attackers to execute arbitr...

This vulnerability allows memory corruption when processing DDI calls with invalid buffers in Qualcomm components. Attackers could potentially execute...

This vulnerability allows an attacker to cause a Denial of Service (DoS) by sending a specially crafted frame with a malformed shared-key descriptor t...

This vulnerability allows attackers to cause a Denial of Service (DoS) condition in affected Qualcomm systems by sending specially crafted CCCH data w...

This vulnerability allows memory corruption when the Virtual Camera Data Mover writes to hardware registers. It affects systems using Qualcomm chipset...

This vulnerability allows unauthorized access to sensitive information when logs are captured, as eSE debug messages containing potentially sensitive ...

This vulnerability allows attackers to read sensitive information from memory when processing specially crafted MBN files. It affects systems using Qu...

This vulnerability allows attackers to read sensitive information from image processing operations by manipulating offset and size parameters. It affe...

This vulnerability allows attackers to cause memory corruption by simultaneously calling IOCTL interface functions to map and unmap buffers. It affect...

This vulnerability allows memory corruption when multiple threads concurrently call IOCTL commands to map/unmap buffers in Qualcomm drivers. Attackers...

This vulnerability allows attackers to cause a denial-of-service (DoS) condition on LTE networks by sending specially crafted random-access response (...