Qualcomm Security Vulnerabilities (CVEs)

This CVE describes a buffer overflow vulnerability in Qualcomm components where processing packets with excessively large sizes can cause memory corru...

This CVE describes a use-after-free vulnerability (CWE-416) in Qualcomm sub-system restart processes that can lead to memory corruption. Attackers cou...

This vulnerability allows memory corruption in the diag component when processing data packets from Unix clients. Attackers could potentially execute ...

This CVE describes a use-after-free vulnerability (CWE-416) in Qualcomm components where abrupt client process termination during event handling cause...

This vulnerability involves memory corruption in Qualcomm components when processing multiple simultaneous escape calls, potentially allowing attacker...

This vulnerability allows memory corruption in Qualcomm video firmware when processing manipulated payloads. Attackers could potentially execute arbit...

This vulnerability allows memory corruption when processing a private escape command in an event trigger, potentially leading to arbitrary code execut...

This vulnerability allows a denial-of-service (DoS) condition in Qualcomm wireless LAN (WLAN) chipsets when processing vendor-specific information ele...

This CVE describes a buffer overflow vulnerability in Qualcomm's EMAC (Ethernet Media Access Controller) driver where memory corruption occurs while c...

This vulnerability allows memory corruption when retrieving CBOR data from a Trusted Application (TA) in Qualcomm components. Attackers could potentia...

This cryptographic vulnerability in Qualcomm chipsets allows improper handling of cryptographic API calls, potentially leading to key corruption or IV...

This vulnerability allows information disclosure when a User Equipment (UE) device receives RTP packets from the network. It affects mobile devices wi...

This CVE describes a memory corruption vulnerability in the mailbox component of Qualcomm automotive systems. Attackers could potentially execute arbi...

This vulnerability allows attackers to execute unauthorized commands on GPU micronodes, leading to memory corruption and potential system compromise. ...

This vulnerability allows memory corruption in Chrome's graphics rendering through Adreno GPU drivers, potentially enabling arbitrary code execution. ...

This vulnerability allows attackers to cause a Denial of Service (DoS) condition by sending specially crafted tone measurement responses that exceed b...

This vulnerability allows memory corruption through improper handling of INIT and multimode invoke IOCTL calls in FastRPC. Attackers could potentially...

This vulnerability allows an attacker to cause a Denial of Service (DoS) condition by sending specially crafted beacon frames containing EHT operation...

This vulnerability allows information disclosure when processing RTCP goodbye packets in Qualcomm products. Attackers can exploit this to leak sensiti...

This vulnerability allows attackers to read sensitive information from memory when processing malformed RTP packets with improper header lengths. It a...

This vulnerability involves memory corruption in the OIS packet parser, which could allow an attacker to execute arbitrary code or cause denial of ser...

This vulnerability allows memory corruption in Qualcomm camera drivers when processing I2C settings. Attackers could potentially execute arbitrary cod...

This CVE describes a buffer overflow vulnerability in Qualcomm's voice call registration processing that could allow memory corruption. Attackers coul...

This vulnerability allows memory corruption when processing image encoding with a NULL configuration parameter in an IOCTL call. It affects Qualcomm d...

This vulnerability allows memory corruption in Qualcomm firmware drivers when processing responses. Attackers could potentially execute arbitrary code...

This vulnerability allows attackers to cause a Denial of Service (DoS) condition by sending specially crafted ML IE (Management Information Element) p...

This vulnerability allows attackers to cause a denial-of-service condition in Qualcomm devices by sending specially crafted registration acceptance OT...

This vulnerability involves memory corruption during the FRS UDS generation process in Qualcomm components, potentially allowing attackers to execute ...

This CVE describes a memory corruption vulnerability in Qualcomm components where incorrect API restrictions allow memory mapping into protected VM ad...

This CVE describes a memory corruption vulnerability in Qualcomm's secure file reading functionality. Attackers could exploit this to execute arbitrar...

This vulnerability allows memory corruption during context user dumps due to insufficient buffer length validation. Attackers could potentially execut...

This vulnerability allows memory corruption during sound model registration for voice activation in Qualcomm audio kernel drivers. Attackers could pot...

This vulnerability allows memory corruption during IOCTL operations in Qualcomm IFE (Image Front End) drivers when validating output resource IDs. Att...

This vulnerability allows memory corruption in the OPE module when processing command buffers, potentially leading to arbitrary code execution. It aff...

This vulnerability allows memory corruption in the Camera kernel of Qualcomm devices due to improper validation of array indices from invalid command ...

This CVE describes a memory corruption vulnerability in Qualcomm's camera-kernel driver due to improper bounds checking during command handling. An at...

This CVE describes a use-after-free vulnerability in Qualcomm components where concurrent buffer access leads to memory corruption when reference coun...

CVE-2024-45564 is a use-after-free vulnerability in Qualcomm server components where concurrent access to server info objects can cause memory corrupt...

This vulnerability allows memory corruption in Qualcomm Camera Request Manager (CRM) when handling schedule requests due to an invalid link count in s...

This vulnerability allows attackers to cause memory corruption through a race condition in concurrent SSR execution on Qualcomm devices. It affects sy...

This vulnerability allows memory corruption when processing device IO control calls for session control in Qualcomm components. Attackers could potent...

This vulnerability allows memory corruption in Qualcomm chipsets when processing packet mapping information with invalid header payload sizes. Attacke...

This vulnerability allows memory corruption when a user-space application makes a specific IOCTL call to read board data on Qualcomm chipsets. Attacke...

This CVE describes a use-after-free vulnerability in Qualcomm drivers where simultaneous IOCTL calls from different threads can cause memory corruptio...

This vulnerability allows a denial-of-service (DoS) condition in Wi-Fi systems when parsing EHT (Extremely High Throughput) operation or capability in...

This CVE describes an information disclosure vulnerability in Qualcomm virtualization components where a guest virtual machine may be able to access s...

This vulnerability allows memory corruption during Wi-Fi connection establishment between a station (STA) and access point (AP) when initiating an ADD...

This vulnerability allows memory corruption in the HAB (Hardware Abstraction Layer) process due to improper access control. Attackers could potentiall...

This vulnerability allows memory corruption when processing escape codes in a Qualcomm API, potentially leading to arbitrary code execution. It affect...