22 matches found
EUVD-2023-25802
Malicious code in bioql PyPI...
CVE-2025-21488 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set...
CVE-2025-21487
CVE-2025-21487 concerns information disclosure in Qualcomm closed‑source components due to incorrect handling of RTP payload length when decoding packets. The root cause is a buffer length mismatch that can lead to over-read and leakage of information from the UE. The vulnerability is categorized...
CVE-2025-21484 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet...
CVE-2025-21484
CVE-2025-21484 is an information-disclosure issue described as a buffer over-read in the Qualcomm data-network stack, triggered when a User Equipment (UE) decodes and reassembles RTP fragments received over the network. Public descriptions consistently state that the vulnerability causes informat...
CVE-2025-21483 Improper Restriction of Operations within the Bounds of a Memory Buffer in Data Network Stack & Connectivity
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs...
CVE-2024-53026 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call...
CVE-2024-53021
CVE-2024-53021 is a Qualcomm chipset vulnerability described in connected PT-2025-23579 and PT-2025-23577 as an information-disclosure issue that occurs while processing goodbye RTCP/RTP packets. The root cause is a buffer over-read in the data network stack during decoding/construction of RTCP h...
CVE-2024-53021 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure may occur while processing goodbye RTCP packet from network...
CVE-2024-53020 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure may occur while decoding the RTP packet with invalid header extension from network...
CVE-2024-53020
CVE-2024-53020 is reported as information disclosure that may occur when decoding RTP packets with an invalid header extension, linked to Qualcomm chipsets’ data/network stack. Connected sources describe a buffer over-read and information disclosure risk in the affected component but do not provi...
CVE-2024-53019
CVE-2024-53019 is a buffer over-read in Qualcomm closed-source components of the Data Network Stack during RTP packet processing. The root cause is an improper RTP header length handling for the number of contributing sources, leading to information disclosure. The CVSSv3.1 base score is 8.2 (Hig...
CVE-2023-21635
Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony...
CVE-2024-45544 Use After Free in Data Network Stack & Connectivity
Memory corruption while processing IOCTL calls to add route entry in the HW...
CVE-2024-45544 Use After Free in Data Network Stack & Connectivity
Memory corruption while processing IOCTL calls to add route entry in the HW...
CVE-2024-45544
CVE-2024-45544 is a memory corruption issue in Qualcomm hardware triggered by IOCTL processing for adding a route entry. Documented as affecting Qualcomm kernel components; vector is Local with Low privileges required, no user interaction. Impact is Confidentiality: Low, Integrity: High, Availabi...
CVE-2024-21464
CVE-2024-21464 : Memory corruption in Qualcomm chipset kernels when processing IPA statistics with no active clients registered. Connected documents confirm it affects Qualcomm components (kernel) and is described as a memory corruption issue in multiple sources. Public technical details across s...
CVE-2024-21464 Buffer Copy Without Checking Size of Input in Data Network Stack & Connectivity
Memory corruption while processing IPA statistics, when there are no active clients registered...
CVE-2024-21464 Buffer Copy Without Checking Size of Input in Data Network Stack & Connectivity
Memory corruption while processing IPA statistics, when there are no active clients registered...
CVE-2023-21635
Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony...