Qcm4490 Firmware Security Vulnerabilities and Issues — Page 4 of Qcm4490 Firmware CVE List

Lucene search

QualcommQcm4490 Firmware

190 matches found

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•49 views

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

7.5CVSS7.5AI score0.00229EPSS

CVE•added 2024/08/05 3:15 p.m.•49 views

CVE-2024-23384

Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.

8.4CVSS8.6AI score0.00034EPSS

CVE•added 2023/12/05 3:15 a.m.•48 views

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

7.8CVSS8AI score0.0006EPSS

CVE•added 2024/05/06 3:15 p.m.•48 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2024/01/02 6:15 a.m.•47 views

CVE-2023-33038

Memory corruption while receiving a message in Bus Socket Transport Server.

7.8CVSS7.7AI score0.00042EPSS

CVE•added 2023/12/05 3:15 a.m.•46 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2023/12/05 3:15 a.m.•46 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/07/01 3:15 p.m.•45 views

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4CVSS8.3AI score0.00035EPSS

CVE•added 2024/09/02 12:15 p.m.•45 views

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2025/03/03 11:15 a.m.•44 views

CVE-2024-38426

While processing the authentication message in UE, improper authentication may lead to information disclosure.

5.4CVSS6.9AI score0.00069EPSS

CVE•added 2024/06/03 10:15 a.m.•43 views

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately checked.

7.8CVSS7.8AI score0.00048EPSS

CVE•added 2024/05/06 3:15 p.m.•42 views

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

8.4CVSS7.1AI score0.00045EPSS

CVE•added 2024/07/01 3:15 p.m.•42 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00033EPSS

CVE•added 2024/08/05 3:15 p.m.•42 views

CVE-2024-33034

Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.

8.4CVSS8.7AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•41 views

CVE-2024-23382

Memory corruption while processing graphics kernel driver request to create DMA fence.

8.4CVSS8.4AI score0.00035EPSS

CVE•added 2024/11/04 10:15 a.m.•39 views

CVE-2024-23385

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

7.5CVSS7AI score0.00056EPSS

CVE•added 2024/08/05 3:15 p.m.•39 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00015EPSS

CVE•added 2024/08/05 3:15 p.m.•38 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•38 views

CVE-2024-33023

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•37 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/11/04 10:15 a.m.•37 views

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

9.1CVSS9AI score0.00062EPSS

CVE•added 2024/05/06 3:15 p.m.•36 views

CVE-2023-43529

Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.

7.5CVSS6.9AI score0.00153EPSS

CVE•added 2024/08/05 3:15 p.m.•36 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/11/04 10:15 a.m.•36 views

CVE-2024-38424

Memory corruption during GNSS HAL process initialization.

7.8CVSS7.9AI score0.00029EPSS

CVE•added 2024/08/05 3:15 p.m.•35 views

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2025/03/03 11:15 a.m.•35 views

CVE-2024-43056

Transient DOS during hypervisor virtual I/O operation in a virtual machine.

6.5CVSS7.1AI score0.00021EPSS

CVE•added 2024/06/03 10:15 a.m.•29 views

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section length.

8.2CVSS8.1AI score0.00093EPSS

CVE•added 2024/08/05 3:15 p.m.•22 views

CVE-2024-23357

Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.

6.2CVSS6.4AI score0.00033EPSS

CVE•added 2024/08/05 3:15 p.m.•20 views

CVE-2024-23352

Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.

7.5CVSS7.6AI score0.00066EPSS

CVE•added 2024/08/05 3:15 p.m.•17 views

CVE-2024-23356

Memory corruption during session sign renewal request calls in HLOS.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•13 views

CVE-2024-23353

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

7.5CVSS7.5AI score0.00161EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

7.8CVSS6.6AI score0.0001EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21450

Cryptographic issue occurs due to use of insecure connection method while downloading.

9.1CVSS6.6AI score0.00031EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21446

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

7.5CVSS6.4AI score0.00063EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-27042

Memory corruption while processing video packets received from video firmware.

7.8CVSS6.8AI score0.00013EPSS

Total number of security vulnerabilities190