Qualcomm Security Vulnerabilities (CVEs)
Track 650 security vulnerabilities affecting Qualcomm products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
CVE-2022-40510 is a critical memory corruption vulnerability in Qualcomm audio components that allows attackers to execute arbitrary code or cause den...
Aug 8, 2023This vulnerability allows memory corruption in Qualcomm data modem firmware when processing DMA buffer release events for CFR data. Attackers could po...
Jul 4, 2023This vulnerability allows memory corruption in Qualcomm WLAN Host software when parsing QMI response messages from firmware. Attackers could potential...
Jul 4, 2023This vulnerability allows arbitrary memory overwrite when a virtual machine gets compromised during TX write operations, leading to memory corruption....
Jul 4, 2023This CVE describes a memory corruption vulnerability in Qualcomm's audio subsystem that occurs during concurrent tunnel playback or recording sessions...
Jul 4, 2023This vulnerability allows attackers to exploit improper input validation in Qualcomm modem firmware when processing LTE security mode commands from ce...
Jul 4, 2023This vulnerability allows information disclosure in Qualcomm WLAN HOST software when sending DPP action frames with invalid source addresses. Attacker...
Jun 6, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in WLAN firmware by sending specially crafted Fast Transition (FT) In...
Jun 6, 2023This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in affected Qualcomm WLAN firmware by sending specially crafted bea...
Jun 6, 2023This vulnerability allows memory corruption in Qualcomm WLAN HOST drivers when processing WMI events from firmware. Attackers could potentially execut...
Jun 6, 2023This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing specific wireless commands. Attackers ...
Jun 6, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm modems by sending specially crafted OTA (Over-The-Air) me...
Jun 6, 2023This vulnerability allows memory corruption in the Qualcomm kernel due to improper access control when processing mapping requests from root processes...
Jun 6, 2023This vulnerability allows attackers to exploit indirect branch misprediction in Qualcomm chipsets to leak sensitive information from the kernel memory...
Jun 6, 2023CVE-2022-40521 is an improper authorization vulnerability in Qualcomm modem firmware that allows attackers to cause a transient denial of service (DoS...
Jun 6, 2023CVE-2022-33307 is a double-free memory corruption vulnerability in Qualcomm automotive components that allows attackers to execute arbitrary code or c...
Jun 6, 2023CVE-2022-33264 is a stack-based buffer overflow vulnerability in Qualcomm modem firmware that allows memory corruption when parsing OTASP Key Generati...
Jun 6, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm modems by sending invalid network configuration data. The...
Jun 6, 2023This vulnerability allows a denial-of-service (DoS) attack on mobile devices by sending a specially crafted Downlink Data Indication message to the mo...
May 2, 2023CVE-2023-21666 is a memory corruption vulnerability in Qualcomm's Adreno GPU driver (KGSL) that allows attackers to access sensitive data from graphic...
May 2, 2023CVE-2023-21642 is a memory corruption vulnerability in Qualcomm's HAB (Hardware Abstraction Layer) memory management that allows attackers with physic...
May 2, 2023This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read while parsing DNS hostnames. It affects ...
May 2, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm modems by sending specially crafted invalid messages on t...
May 2, 2023This CVE describes a use-after-free memory corruption vulnerability in Qualcomm's Inter-Processor Communication (IPC) subsystem. Attackers could explo...
May 2, 2023CVE-2022-25713 is a memory corruption vulnerability in Qualcomm automotive chipsets that occurs during shared key export operations. Attackers can exp...
May 2, 2023This vulnerability allows memory corruption in Qualcomm's multimedia framework due to integer overflow when synx bind is called with synx signal. It a...
Apr 13, 2023This vulnerability allows attackers to read sensitive information from Bluetooth-enabled devices during A2DP audio streaming. It affects devices with ...
Apr 13, 2023This vulnerability allows attackers to read sensitive information from memory in Qualcomm modems due to a buffer over-read while parsing WMS messages....
Apr 13, 2023This vulnerability in Qualcomm modems allows attackers to read sensitive information from device memory due to improper handling of malformed IP heade...
Apr 13, 2023CVE-2022-33288 is a critical buffer overflow vulnerability in Qualcomm's Core component that allows memory corruption when sending SCM commands to ret...
Apr 13, 2023This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read in IPv6 packet processing. It affects de...
Apr 13, 2023This vulnerability is a time-of-check time-of-use (TOCTOU) race condition in Qualcomm modem firmware that allows a transient denial-of-service (DoS) a...
Apr 13, 2023This vulnerability allows remote attackers to execute arbitrary code on affected mobile devices by sending a specially crafted SMS message. It affects...
Apr 13, 2023CVE-2022-33231 is a double-free memory corruption vulnerability in Qualcomm chipsets that occurs during encryption key initialization. Successful expl...
Apr 13, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm modems by sending specially crafted HTTP packets with chu...
Apr 13, 2023CVE-2022-33211 is a critical memory corruption vulnerability in Qualcomm modem firmware caused by improper size calculation when serializing CoAP mess...
Apr 13, 2023CVE-2022-25747 is an information disclosure vulnerability in Qualcomm modems due to improper input validation when parsing CoAP (Constrained Applicati...
Apr 13, 2023This vulnerability allows remote attackers to execute arbitrary code or cause denial of service on affected Qualcomm modem chipsets by exploiting a bu...
Apr 13, 2023CVE-2022-25737 is an information disclosure vulnerability in Qualcomm modems where missing NULL pointer checks allow attackers to read sensitive data ...
Apr 13, 2023CVE-2022-25730 is an information disclosure vulnerability in Qualcomm modems where improper IP type checking during DNS server queries allows attacker...
Apr 13, 2023CVE-2022-25678 is a critical buffer overflow vulnerability in Qualcomm modem firmware that allows remote code execution. Attackers can exploit this by...
Apr 13, 2023This vulnerability allows memory corruption in Automotive Android OS due to improper array index validation, potentially enabling arbitrary code execu...
Mar 10, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in affected Qualcomm WLAN chipsets by sending specially crafted packe...
Mar 10, 2023This vulnerability allows attackers to execute arbitrary code or cause denial of service on affected Qualcomm WLAN chipsets due to memory corruption d...
Mar 10, 2023This vulnerability allows memory corruption through a double-free error when processing specially crafted 3gp video files with invalid metadata atoms....
Mar 10, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in affected Qualcomm WLAN firmware by sending specially crafted secur...
Mar 10, 2023CVE-2022-33272 is a reachable assertion vulnerability in Qualcomm modem firmware that can cause a denial of service (DoS) condition. When exploited, i...
Mar 10, 2023This vulnerability allows remote attackers to execute arbitrary code or cause denial of service on affected devices by exploiting a buffer overflow in...
Feb 12, 2023This vulnerability in Qualcomm WLAN firmware allows an attacker to cause a denial-of-service (DoS) condition by exploiting uncontrolled resource consu...
Feb 12, 2023This vulnerability allows attackers to cause a denial-of-service (DoS) condition in affected wireless LAN (WLAN) hosts by sending specially crafted in...
Feb 12, 2023Why Monitor Qualcomm Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 650+ known vulnerabilities affecting Qualcomm products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Qualcomm packages in under 60 seconds. No agents required - completely agentless scanning that works across Qualcomm deployments.
Free vulnerability database: Access detailed information about every Qualcomm CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Qualcomm CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
