Filtered by vendor Qualcomm
Subscriptions
Filtered by product Qcn9000
Subscriptions
Total
262 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | 7.5 High |
| Transient DOS while handling beacon frames with invalid IE header length. | ||||
| CVE-2025-27029 | 1 Qualcomm | 134 Fastconnect 7800, Fastconnect 7800 Firmware, Immersive Home 3210 Platform and 131 more | 2025-08-20 | 7.5 High |
| Transient DOS while processing the tone measurement response buffer when the response buffer is out of range. | ||||
| CVE-2025-27073 | 1 Qualcomm | 341 Ar8035, Ar8035 Firmware, Csr8811 and 338 more | 2025-08-20 | 7.5 High |
| Transient DOS while creating NDP instance. | ||||
| CVE-2025-27065 | 1 Qualcomm | 301 Ar8035, Ar8035 Firmware, Fastconnect 6800 and 298 more | 2025-08-20 | 7.5 High |
| Transient DOS while processing a frame with malformed shared-key descriptor. | ||||
| CVE-2024-45556 | 1 Qualcomm | 121 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 118 more | 2025-08-19 | 6.5 Medium |
| Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR. | ||||
| CVE-2024-21459 | 1 Qualcomm | 352 Ar8035, Ar8035 Firmware, Ar9380 and 349 more | 2025-08-15 | 6.5 Medium |
| Information disclosure while handling beacon or probe response frame in STA. | ||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-08-11 | 8.2 High |
| Memory corruption during management frame processing due to mismatch in T2LM info element. | ||||
| CVE-2023-28550 | 1 Qualcomm | 670 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 667 more | 2025-08-11 | 7.8 High |
| Memory corruption in MPP performance while accessing DSM watermark using external memory address. | ||||
| CVE-2023-24854 | 1 Qualcomm | 326 215, 215 Firmware, Ar8035 and 323 more | 2025-08-11 | 7.8 High |
| Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message. | ||||
| CVE-2023-28539 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Ar9380 and 311 more | 2025-08-11 | 6.6 Medium |
| Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command. | ||||
| CVE-2023-24847 | 1 Qualcomm | 514 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 511 more | 2025-08-11 | 7.5 High |
| Transient DOS in Modem while allocating DSM items. | ||||
| CVE-2023-28563 | 1 Qualcomm | 460 Aqt1000, Aqt1000 Firmware, Ar8031 and 457 more | 2025-08-11 | 6.1 Medium |
| Information disclosure in IOE Firmware while handling WMI command. | ||||
| CVE-2023-24851 | 1 Qualcomm | 382 Ar8035, Ar8035 Firmware, Csr8811 and 379 more | 2025-08-11 | 7.8 High |
| Memory Corruption in WLAN HOST while parsing QMI response message from firmware. | ||||
| CVE-2023-28541 | 1 Qualcomm | 426 Aqt1000, Aqt1000 Firmware, Ar8031 and 423 more | 2025-08-11 | 7.8 High |
| Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. | ||||
| CVE-2023-28569 | 1 Qualcomm | 416 Aqt1000, Aqt1000 Firmware, Ar9380 and 413 more | 2025-08-11 | 6.1 Medium |
| Information disclosure in WLAN HAL while handling command through WMI interfaces. | ||||
| CVE-2024-33049 | 1 Qualcomm | 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame. | ||||
| CVE-2023-28586 | 1 Qualcomm | 626 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 623 more | 2025-08-11 | 6 Medium |
| Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. | ||||
| CVE-2024-38397 | 1 Qualcomm | 234 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 231 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing probe response and assoc response frame. | ||||
| CVE-2024-33048 | 1 Qualcomm | 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | ||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | 7.5 High |
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. | ||||