Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
QualcommSrv1h Firmware-

167 matches found

CVE
CVEadded 2025/02/03 5:15 p.m.106 views

CVE-2024-45569

Memory corruption while parsing the ML IE due to invalid frame content.

9.8CVSS9.7AI score0.00093EPSS
CVE
CVEadded 2025/03/03 11:15 a.m.99 views

CVE-2025-21424

Memory corruption while calling the NPU driver APIs concurrently.

7.8CVSS7.4AI score0.00021EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.88 views

CVE-2023-43513

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

7.8CVSS7.7AI score0.00053EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.87 views

CVE-2023-43534

Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point.

9.8CVSS9.4AI score0.0021EPSS
CVE
CVEadded 2024/09/02 12:15 p.m.85 views

CVE-2024-38402

Memory corruption while processing IOCTL call for getting group info.

7.8CVSS7.9AI score0.0005EPSS
CVE
CVEadded 2024/12/02 11:15 a.m.84 views

CVE-2024-33063

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.

7.5CVSS7.6AI score0.00115EPSS
CVE
CVEadded 2024/04/01 3:15 p.m.82 views

CVE-2023-33111

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.

5.5CVSS5.4AI score0.00035EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.79 views

CVE-2023-43520

Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.

9.8CVSS9.5AI score0.00204EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.79 views

CVE-2023-43550

Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.

7.8CVSS7.9AI score0.0007EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.79 views

CVE-2023-43553

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.

9.8CVSS9.8AI score0.0028EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.78 views

CVE-2023-43552

Memory corruption while processing MBSSID beacon containing several subelement IE.

9.8CVSS9.8AI score0.00218EPSS
CVE
CVEadded 2024/07/01 3:15 p.m.77 views

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

8.4CVSS8.3AI score0.00039EPSS
CVE
CVEadded 2025/01/06 11:15 a.m.76 views

CVE-2024-45558

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

7.5CVSS7.5AI score0.00074EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.75 views

CVE-2023-43546

Memory corruption while invoking HGSL IOCTL context create.

8.4CVSS8.7AI score0.0007EPSS
CVE
CVEadded 2025/01/06 11:15 a.m.75 views

CVE-2024-23366

Information Disclosure while invoking the mailbox write API when message received from user is larger than mailbox size.

6.6CVSS6.4AI score0.00019EPSS
CVE
CVEadded 2024/02/06 6:15 a.m.73 views

CVE-2023-33064

Transient DOS in Audio when invoking callback function of ASM driver.

5.5CVSS5.5AI score0.00024EPSS
CVE
CVEadded 2024/04/01 3:15 p.m.73 views

CVE-2023-33115

Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.

7.8CVSS8AI score0.00044EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.73 views

CVE-2023-43547

Memory corruption while invoking IOCTLs calls in Automotive Multimedia.

8.4CVSS8.6AI score0.00091EPSS
CVE
CVEadded 2024/05/06 3:15 p.m.72 views

CVE-2024-23354

Memory corruption when the IOCTL call is interrupted by a signal.

8.4CVSS7.1AI score0.00134EPSS
CVE
CVEadded 2025/01/06 11:15 a.m.71 views

CVE-2024-43063

information disclosure while invoking the mailbox read API.

6.1CVSS6.1AI score0.00019EPSS
CVE
CVEadded 2025/05/06 9:15 a.m.71 views

CVE-2025-21459

Transient DOS while parsing per STA profile in ML IE.

7.5CVSS7.6AI score0.00071EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.70 views

CVE-2023-33072

Memory corruption in Core while processing control functions.

9.3CVSS7.8AI score0.00029EPSS
CVE
CVEadded 2024/07/01 3:15 p.m.70 views

CVE-2024-23372

Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.

8.4CVSS8.3AI score0.00039EPSS
CVE
CVEadded 2023/10/03 6:15 a.m.69 views

CVE-2023-21673

Improper Access to the VM resource manager can lead to Memory Corruption.

8.7CVSS7.9AI score0.00024EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.69 views

CVE-2023-28556

Cryptographic issue in HLOS during key management.

7.8CVSS7.2AI score0.00045EPSS
CVE
CVEadded 2024/02/06 6:15 a.m.69 views

CVE-2023-33065

Information disclosure in Audio while accessing AVCS services from ADSP payload.

7.1CVSS6.8AI score0.00027EPSS
CVE
CVEadded 2024/05/06 3:15 p.m.69 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00082EPSS
CVE
CVEadded 2024/05/06 3:15 p.m.69 views

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.

8.4CVSS7.1AI score0.00084EPSS
CVE
CVEadded 2024/07/01 3:15 p.m.69 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS7.9AI score0.00035EPSS
CVE
CVEadded 2024/07/01 3:15 p.m.69 views

CVE-2024-23380

Memory corruption while handling user packets during VBO bind operation.

8.4CVSS8.2AI score0.00013EPSS
CVE
CVEadded 2024/04/01 3:15 p.m.68 views

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

8.4CVSS8.7AI score0.00044EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.68 views

CVE-2023-43533

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

7.5CVSS7.5AI score0.00122EPSS
CVE
CVEadded 2024/09/02 12:15 p.m.68 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS
CVE
CVEadded 2025/02/03 5:15 p.m.68 views

CVE-2024-49833

Memory corruption can occur in the camera when an invalid CID is used.

7.8CVSS7.9AI score0.00024EPSS
CVE
CVEadded 2025/03/03 11:15 a.m.68 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.00073EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.67 views

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

7.8CVSS7.8AI score0.00031EPSS
CVE
CVEadded 2024/04/01 3:15 p.m.67 views

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

9.8CVSS7.4AI score0.00062EPSS
CVE
CVEadded 2025/02/03 5:15 p.m.67 views

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8CVSS7.9AI score0.00024EPSS
CVE
CVEadded 2025/02/03 5:15 p.m.66 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00053EPSS
CVE
CVEadded 2025/02/03 5:15 p.m.66 views

CVE-2024-49839

Memory corruption during management frame processing due to mismatch in T2LM info element.

9.8CVSS8.4AI score0.00072EPSS
CVE
CVEadded 2024/04/01 3:15 p.m.65 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.00044EPSS
CVE
CVEadded 2023/11/07 6:15 a.m.65 views

CVE-2023-28574

Memory corruption in core services when Diag handler receives a command to configure event listeners.

9CVSS8.2AI score0.00045EPSS
CVE
CVEadded 2024/05/06 3:15 p.m.65 views

CVE-2023-43521

Memory corruption when multiple listeners are being registered with the same file descriptor.

7.8CVSS7.1AI score0.00024EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.65 views

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

7.5CVSS7.5AI score0.00123EPSS
CVE
CVEadded 2024/12/02 11:15 a.m.65 views

CVE-2024-33039

Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.

6.7CVSS6.8AI score0.00023EPSS
CVE
CVEadded 2025/05/06 9:15 a.m.65 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00017EPSS
CVE
CVEadded 2024/02/06 6:16 a.m.64 views

CVE-2023-33068

Memory corruption in Audio while processing IIR config data from AFE calibration block.

7.8CVSS7.8AI score0.0002EPSS
CVE
CVEadded 2025/03/03 11:15 a.m.64 views

CVE-2024-53024

Memory corruption in display driver while detaching a device.

7.8CVSS7.4AI score0.00024EPSS
CVE
CVEadded 2024/03/04 11:15 a.m.63 views

CVE-2023-33090

Transient DOS while processing channel information for speaker protection v2 module in ADSP.

5.5CVSS5.4AI score0.00061EPSS
CVE
CVEadded 2024/09/02 12:15 p.m.63 views

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS7.6AI score0.00264EPSS
Total number of security vulnerabilities167