CVE-2019-10603 | ByteOS Network

Vulnerability Details :

CVE-2019-10603

Assigner-qualcomm

Assigner Org ID-2cfc7d3e-20d3-47ac-8db7-1b7285aff15f

Published At-05 Mar, 2020 | 08:56

Updated At-04 Aug, 2024 | 22:24

Use after free issue occurs If the real device interface goes down and a route lookup is performed while sending a raw IPv6 message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8917, MSM8937, MSM8996AU, QCN7605, SDA845, SDM630, SDM636, SDM660, SDX20, SXR1130

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:qualcomm

Assigner Org ID:2cfc7d3e-20d3-47ac-8db7-1b7285aff15f

Published At:05 Mar, 2020 | 08:56

Updated At:04 Aug, 2024 | 22:24

▼CVE Numbering Authority (CNA)

Use after free issue occurs If the real device interface goes down and a route lookup is performed while sending a raw IPv6 message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8917, MSM8937, MSM8996AU, QCN7605, SDA845, SDM630, SDM636, SDM660, SDX20, SXR1130

Affected Products

Vendor

Qualcomm Technologies, Inc.

Product

Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Versions

Affected

APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8917, MSM8937, MSM8996AU, QCN7605, SDA845, SDM630, SDM636, SDM660, SDX20, SXR1130

Problem Types

Type	CWE ID	Description
text	N/A	Use After Free Issue in HLOS Data

Type: text

CWE ID: N/A

Description: Use After Free Issue in HLOS Data

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin	x_refsource_CONFIRM

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin

Resource:

x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin	x_refsource_CONFIRM x_transferred

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin

Resource:

x_refsource_CONFIRM

x_transferred

▼National Vulnerability Database (NVD)

Source:product-security@qualcomm.com

Published At:05 Mar, 2020 | 09:15

Updated At:05 Mar, 2020 | 20:33

Use after free issue occurs If the real device interface goes down and a route lookup is performed while sending a raw IPv6 message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8917, MSM8937, MSM8996AU, QCN7605, SDA845, SDM630, SDM636, SDM660, SDX20, SXR1130

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C

Type: Primary

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 2.0

Base score: 7.2

Base severity: HIGH

Vector:

AV:L/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8053_firmware>>-

cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8096au_firmware>>-

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8098_firmware>>-

cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9206_firmware>>-

cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9207c_firmware>>-

cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9607_firmware>>-

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9640_firmware>>-

cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9650_firmware>>-

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8917_firmware>>-

cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8937_firmware>>-

cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8996au_firmware>>-

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>qcn7605_firmware>>-

cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sda845_firmware>>-

cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm630_firmware>>-

cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm636_firmware>>-

cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm660_firmware>>-

cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdx20_firmware>>-

cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdx20>>-

cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sxr1130_firmware>>-

cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-416	Primary	nvd@nist.gov

CWE ID: CWE-416

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin	product-security@qualcomm.com	Vendor Advisory

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin

Source: product-security@qualcomm.com

Resource:

Vendor Advisory

Similar CVEs

2154Records found

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.61%

||

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-04 Aug, 2024 | 22:24

While trying to obtain datad ipc handle during DPL initialization, Heap use-after-free issue can occur if modem SSR occurs at same time in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCA6574AU, QCS605, QM215, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 qcs605_firmware sdm670_firmware sdm636 msm8939 qcs605 msm8937_firmware sdm429_firmware msm8905_firmware qca6574au_firmware sda660 sxr1130_firmware sxr1130 apq8009 msm8909w msm8909_firmware apq8053_firmware nicobar msm8920 msm8953 sdm450 sdm636_firmware msm8998_firmware sdm660 msm8920_firmware sdm630 qca6574au sdm710 qm215 sdm710_firmware msm8939_firmware msm8937 msm8905 sm8150_firmware msm8909 apq8096au sdm439_firmware sdm630_firmware sda660_firmware qm215_firmware msm8940 apq8053 apq8096au_firmware msm8953_firmware sm6150_firmware msm8917_firmware msm8998 sm8150 nicobar_firmware sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.10% / 28.42%

||

7 Day CHG~0.00%

Published-30 Sep, 2019 | 15:40

Updated-04 Aug, 2024 | 22:24

Possible use after free issue due to improper input validation in volume listener library in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware msm8909w sd_665_firmware sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 qcs405 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.10% / 27.67%

||

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-04 Aug, 2024 | 22:24

When kernel thread unregistered listener, Use after free issue happened as the listener client`s private data has been already freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9607, MSM8909W, Nicobar, QCM2150, QCS405, QCS605, Saipan, SC8180X, SDM429W, SDX55, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-qcm2150_firmware sm8150_firmware sxr2130_firmware sdm429w qcs405_firmware qcs605_firmware qcm2150 mdm9607_firmware sm8250_firmware qcs605 sc8180x_firmware sdx55 qcs405 saipan_firmware sm8250 msm8909w_firmware mdm9607 sdm429w_firmware sm8150 sdx55_firmware nicobar_firmware msm8909w saipan sxr2130 sc8180x nicobar Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 14.85%

||

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 22:24

Lack of check for a negative value returned for get_clk is wrongly interpreted as valid pointer and lead to use after free in clk driver in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware msm8909w sd_665_firmware sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 qcs405 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.57%

||

7 Day CHG~0.00%

Published-18 Dec, 2019 | 05:25

Updated-04 Aug, 2024 | 22:24

Use after free of a pointer in iWLAN scenario during netmgr state transition to CONNECT in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996AU, MSM8998, QCA6574AU, QCS405, QCS605, SDA660, SDA845, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware ipq4019_firmware mdm9206 sdm670_firmware sdx24_firmware ipq8074 sdm636 sda845_firmware apq8098 mdm9206_firmware msm8939 qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware qca6574au_firmware sda660 sdx55_firmware ipq8064 sxr1130_firmware apq8064_firmware sxr1130 msm8909w apq8009 msm8909_firmware apq8053_firmware ipq8064_firmware sda845 msm8920 msm8953 sdm636_firmware apq8064 sdm845_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware qcs405 ipq8074_firmware qca6574au sdm710 mdm9607 apq8017_firmware sdm710_firmware msm8939_firmware mdm9150 msm8937 mdm9207c_firmware msm8905 mdm9207c sm8150_firmware msm8909 sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware sdm630_firmware sda660_firmware ipq4019 sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware apq8017 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.61%

||

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-04 Aug, 2024 | 22:24

Potential use-after-free heap error during Validate/Present calls on display HW composer in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, QCS605, SDA660, SDM845, SDX20, SM8150

Vendor-Qualcomm Technologies, Inc.

Product-msm8920 msm8953 msm8996au_firmware apq8098_firmware sdm845 sdx20 msm8920_firmware mdm9607_firmware mdm9650 msm8940_firmware msm8909w_firmware mdm9607 msm8996au msm8917 msm8937 mdm9207c_firmware qcs605_firmware mdm9206 mdm9207c sm8150_firmware apq8096au apq8098 sda660_firmware mdm9206_firmware qcs605 msm8940 apq8053 apq8096au_firmware msm8953_firmware msm8917_firmware msm8937_firmware mdm9650_firmware sm8150 sdx20_firmware sda660 msm8909w apq8053_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.61%

||

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-04 Aug, 2024 | 22:24

Use after free issue occurs when camera access sensors data through direct report mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8096AU, MDM9607, MSM8909W, Nicobar, QCS605, SA6155P, SDA845, SDM429W, SDM670, SDM710, SDM845, SM6150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sa6155p_firmware sdm429w sdm845 mdm9607_firmware sm8250_firmware sdm710 msm8909w_firmware mdm9607 sm6150 sdm429w_firmware sdm710_firmware sa6155p sdm670 sxr2130 qcs605_firmware sdm670_firmware sm8150_firmware sxr2130_firmware apq8096au sda845_firmware qcs605 apq8096au_firmware sm6150_firmware sm8250 sm8150 sxr1130_firmware nicobar_firmware msm8909w sxr1130 sda845 nicobar sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 14.85%

||

7 Day CHG~0.00%

Published-30 Sep, 2019 | 15:40

Updated-04 Aug, 2024 | 22:24

Use after free issue occurs If another instance of open for voice_svc node has been called from application without closing the previous one. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 sd_615_firmware msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware sd_415_firmware msm8909w sd_665_firmware sd_616_firmware sd_205_firmware sd_415 sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_615 sd_710_firmware sdm630 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware sdm439_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-6.6||MEDIUM

EPSS-0.02% / 2.59%

||

7 Day CHG~0.00%

Published-06 May, 2025 | 08:31

Updated-11 Aug, 2025 | 15:06

Use After Free in HLOS

Memory corruption during concurrent access to server info object due to unprotected critical field.

Vendor-Qualcomm Technologies, Inc.

Product-qca6678aq_firmware qcs410_firmware sa6150p_firmware sd865_5g sdm429w_firmware sw5100p qcs610_firmware wcd9335 sxr2130_firmware wcd9370 qca6678aq qca6696 wcd9340_firmware sa8530p wcd9341_firmware qca6320 sa4150p_firmware qca6426 qca6564au qcn9074 sa4150p wsa8815_firmware sa8195p_firmware qca6426_firmware qca9377_firmware qca6574au_firmware qam8295p wcd9341 qca6574au snapdragon_820_automotive snapdragon_888\+_5g_mobile_firmware wcn3950 wsa8810_firmware snapdragon_870_5g_mobile_firmware sa9000p_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware wcn3660b_firmware snapdragon_820_automotive_firmware fastconnect_6800_firmware sa8295p_firmware snapdragon_870_5g_mobile sd835_firmware sa4155p_firmware video_collaboration_vc1_platform_firmware sa4155p c-v2x_9150 qca6320_firmware snapdragon_xr2_5g_firmware sw5100_firmware sa8540p qca6310_firmware qsm8250_firmware fastconnect_6800 fastconnect_7800_firmware fastconnect_6900 snapdragon_w5\+_gen_1_wearable_firmware video_collaboration_vc1_platform snapdragon_865_5g_mobile_firmware wcd9385_firmware snapdragon_x55_5g_modem-rf_system fastconnect_6900_firmware qca6310 wcd9380 sa6145p_firmware snapdragon_xr2_5g snapdragon_8_gen_1_mobile_firmware sa8150p msm8996au_firmware sa6155p qca6564au_firmware snapdragon_429_mobile_firmware wsa8810 qsm8250 sa9000p sw5100 snapdragon_888_5g_mobile_firmware video_collaboration_vc3_platform qca6595au snapdragon_888_5g_mobile c-v2x_9150_firmware sa6155p_firmware qca6688aq qam8295p_firmware sd835 wcn3990_firmware qca6564a_firmware qca6436_firmware qca6698aq_firmware snapdragon_888\+_5g_mobile wcd9385 mdm9650_firmware snapdragon_8_gen_1_mobile qca9367_firmware snapdragon_865\+_5g_mobile wcd9370_firmware mdm9650 qca9367 sdx55_firmware snapdragon_x55_5g_modem-rf_system_firmware wcn3660b qca6574a sxr2130 wcn3620_firmware qca6174a sa8195p wcd9340 snapdragon_auto_5g_modem-rf_gen_2 qca6174a_firmware sa8540p_firmware snapdragon_835_mobile_pc_firmware wcn3988 sdm429w wcd9335_firmware wcn3980_firmware qca6436 wsa8835 qca6595au_firmware qca6391_firmware sw5100p_firmware qca6696_firmware wcd9380_firmware sa6150p qcs410 sa8155p_firmware wsa8815 qca6564a sa8155p wsa8830 qca9377 sa6145p qcn9074_firmware qca6574a_firmware sdx55 msm8996au snapdragon_865_5g_mobile wcn3620 snapdragon_835_mobile_pc qca6391 snapdragon_865\+_5g_mobile_firmware snapdragon_429_mobile qca6698aq wcn3950_firmware sa8530p_firmware sa8295p fastconnect_7800 sa8145p_firmware wcn3680b sd865_5g_firmware qca6688aq_firmware sa8150p_firmware wcn3988_firmware video_collaboration_vc3_platform_firmware sa8145p wcn3990 wsa8835_firmware wcn3980 wsa8830_firmware wcn3680b_firmware snapdragon_w5\+_gen_1_wearable qcs610 Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Mar, 2025 | 10:07

Updated-05 Mar, 2025 | 04:55

Use After Free in DSP Service

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.06% / 19.92%

||

7 Day CHG~0.00%

Published-15 Nov, 2022 | 00:00

Updated-22 Apr, 2025 | 16:15

Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Vendor-Qualcomm Technologies, Inc.

Product-wcd9380_firmware wcn3615_firmware msm8996au sd429_firmware qca6595au_firmware qualcomm215_firmware sd730 qca6310 apq8009 mdm9607 qca6696 qca6421 qsm8250_firmware qca6564au sdx24 wcn3660b qca6426_firmware sd632_firmware sd720g sa6150p sd460 sd710_firmware sd205_firmware msm8996au_firmware apq8056 sdx24_firmware wsa8830 wsa8815 wcn3680b qca6430 wcn3620_firmware sd855 qcs6490_firmware wcd9340 sdx55_firmware sdxr2_5g_firmware msm8976sg_firmware mdm9650 sd765g_firmware qca6574a msm8108_firmware sd865_5g_firmware apq8017_firmware qcm6125_firmware sdm429w_firmware sd835_firmware wcn6750 sa8295p_firmware sm7325p msm8917_firmware sd_636_firmware sd695_firmware qcc5100 sd_675 qca6335 sd625_firmware msm8108 qcs405 qca6595 qca6431_firmware msm8208 csra6640 sd480_firmware apq8064au_firmware qca6430_firmware qca8081 sm7315_firmware sm7325p_firmware qca6584au apq8009w sd870 mdm9150 qca9367 qca6390_firmware qcn9024_firmware sa6155_firmware wcn6855 wcn3910 sd870_firmware qcm6490_firmware sm6250 qcs8155 sdm630_firmware qca6431 qca6595au wcd9370 sd821_firmware qcs4290_firmware sd888_firmware wcn3980 sm4125_firmware sd439_firmware sm7315 sd765_firmware sd720g_firmware sd765g sd670 mdm9150_firmware sdx55m msm8208_firmware msm8917 qam8295p sd450 wcn6850_firmware wcn3660 sm6250p wsa8810_firmware wsa8815_firmware wcn3991_firmware sa8150p sd625 wcn6740 msm8608_firmware qca6436 apq8064au msm8952_firmware sa8155p sdxr1 wsa8810 msm8909w sdm630 sw5100p_firmware aqt1000_firmware wsa8835_firmware wcd9335_firmware sm7250p_firmware apq8009_firmware qca6391 qcn9024 wcn3998_firmware csra6620 wcn6851 sd778g_firmware wcd9370_firmware sd675 qca6420_firmware sd439 wcn3660_firmware qcc5100_firmware sd210_firmware qcm6125 apq8052_firmware qca4020_firmware sdx12 sd660 csrb31024_firmware sa4150p_firmware sdm429w sdx20 qcs610 qualcomm215 apq8052 qca6391_firmware sd205 wcd9326_firmware sm7250p sa8155p_firmware csra6620_firmware wcn3610 sdx20_firmware sa6145p wcn3910_firmware msm8209 apq8017 wcd9375 sd750g_firmware msm8976_firmware qca6696_firmware sm6250p_firmware sd865_5g qca9377 wcn3990_firmware wcn3950_firmware wcn3988 sd778g wcd9371_firmware wcn3615 msm8976 sd750g sd768g_firmware qcs605 msm8952 qca6310_firmware sd710 qcs8155_firmware qca6436_firmware sa8195p_firmware qca4020 qca9367_firmware sd_636 wcd9341_firmware sd821 sd632 wcd9340_firmware sd_675_firmware qca6174a_firmware qca6564a_firmware sd855_firmware sd662_firmware wcd9371 mdm9650_firmware sdx50m qcs405_firmware qcn6024_firmware qcs6490 sdx55 sd460_firmware msm8956 mdm9628 wcn3610_firmware sa6155 qcm4290_firmware msm8976sg sd450_firmware sd820 wcn3660b_firmware sm4375 msm8909w_firmware sdx20m_firmware wcd9360_firmware sdw2500 sdw2500_firmware sa6145p_firmware sd626 sd768g wcn6740_firmware wcn6856 sd626_firmware sm4125 sda429w_firmware sdx50m_firmware apq8009w_firmware sa6155p qca6390 sa8150p_firmware sd480 wcd9330 sa8145p_firmware sw5100 wcn6850 sa8145p sa415m wcn3950 msm8608 qca6320_firmware qca6584au_firmware qcm6490 qcn6024 qca6174a wcd9335 wcn3999 sd835 sd670_firmware wcn3680b_firmware qca6595_firmware qca6421_firmware qca6574au_firmware sd662 mdm9250_firmware qam8295p_firmware qca6564_firmware sa8295p qcs610_firmware msm8956_firmware qca6174 qcm2290_firmware wcd9380 ar8031 qcm4290 wcn3680 mdm9628_firmware sd660_firmware sd730_firmware sd695 qca6174_firmware wcd9375_firmware sd888 sa6150p_firmware ar8035_firmware wcn6856_firmware aqt1000 sdx12_firmware ar8035 wcn6855_firmware qsm8250 qca6420 wcd9360 sd780g_firmware wcn3680_firmware qcm2290 sdx65_firmware mdm9250 sa515m sd845_firmware mdm9206 sdxr1_firmware sa515m_firmware mdm9607_firmware wcn3990 apq8076 sd429 apq8076_firmware sd690_5g qca8081_firmware wsa8835 wcn3998 ar8031_firmware apq8056_firmware qca8337_firmware mdm9206_firmware qcs2290 sd820_firmware wcd9385 sd678 qca6574au sdx65 wcd9385_firmware apq8096au wcn6750_firmware qcs410_firmware sd210 sd680 sd888_5g sd678_firmware qca9379 wcn3999_firmware qcs6125 sm4375_firmware wcn3991 qca6574 csra6640_firmware qca6574_firmware sa415m_firmware qca6564a sdx20m sa8195p sd675_firmware qca6574a_firmware sda429w sa8155_firmware wsa8830_firmware sd888_5g_firmware qca6320 qca8337 sm6250_firmware sdxr2_5g wcd9341 wcn3980_firmware qcs2290_firmware wcn6851_firmware wcd9326 sd680_firmware qca9379_firmware sa6155p_firmware sa4150p qca9377_firmware apq8096au_firmware sw5100_firmware sd780g qca6564au_firmware csrb31024 qca6426 qca6335_firmware sdx55m_firmware qcs6125_firmware sd690_5g_firmware sa8155 wcn3620 sd765 qcs605_firmware qca6564 wcd9330_firmware wcn3988_firmware qcs4290 msm8209_firmware sw5100p sd845 qcs410 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-6.6||MEDIUM

EPSS-0.02% / 2.59%

||

7 Day CHG~0.00%

Published-06 May, 2025 | 08:32

Updated-09 May, 2025 | 19:12

Use After Free in Secure Processor

Memory corruption while handling multiple IOCTL calls from userspace to operate DMA operations.

Vendor-Qualcomm Technologies, Inc.

Product-snapdragon_8_gen_3_mobile snapdragon_8_gen_3_mobile_firmware wcd9390_firmware fastconnect_7800_firmware wcd9395 wsa8840 wsa8845h wsa8845_firmware wsa8840_firmware wsa8845 wcd9395_firmware wsa8845h_firmware wcd9390 fastconnect_7800 Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.06% / 20.04%

||

7 Day CHG~0.00%

Published-06 Jul, 2018 | 17:00

Updated-17 Sep, 2024 | 03:48

In the KGSL driver in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, a reference counting error can lead to a Use After Free condition.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.09% / 26.21%

||

7 Day CHG~0.00%

Published-17 Oct, 2022 | 00:00

Updated-13 May, 2025 | 20:15

Memory corruption in multimedia due to use after free during callback registration failure in Snapdragon Mobile

Vendor-Qualcomm Technologies, Inc.

Product-wcn6855 wsa8830 wcn6855_firmware sm8475 wcn7851_firmware wcn6856 wsa8830_firmware wcn7850_firmware wcn7850 wcn6856_firmware wsa8835 sd_8_gen1_5g_firmware wcd9380 wcn7851 wsa8835_firmware wcd9380_firmware Snapdragon Mobile

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Mar, 2025 | 10:07

Updated-03 Mar, 2025 | 12:28

Use After Free in Audio

Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Mar, 2025 | 10:07

Updated-03 Mar, 2025 | 12:27

Use After Free in Camera Linux

Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.36% / 57.40%

||

7 Day CHG-0.11%

Published-07 Oct, 2024 | 12:59

Updated-11 Aug, 2025 | 15:06

Known KEV||Action Due Date - 2024-10-29||Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.

Use After Free in DSP Service

Memory corruption while maintaining memory maps of HLOS memory.

Vendor-Qualcomm Technologies, Inc.

Product-sw5100p qcs410_firmware sa6150p_firmware sd660_firmware sd865_5g qca6595 qcs610_firmware wcd9335 sxr2130_firmware wcd9370 qca6696 wcd9341_firmware sa4150p_firmware qca6426 fastconnect_6700 snapdragon_685_4g_mobile sa4150p wsa8815_firmware sa8195p_firmware qca6426_firmware qca6574au_firmware qam8295p wcd9341 qca6574au snapdragon_888\+_5g_mobile_firmware wcn3950 wsa8810_firmware snapdragon_870_5g_mobile_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware fastconnect_6800_firmware sa8295p_firmware snapdragon_870_5g_mobile sa4155p_firmware video_collaboration_vc1_platform_firmware sa4155p qca6584au snapdragon_xr2_5g_firmware sw5100_firmware fastconnect_6800 qca6595_firmware fastconnect_7800_firmware fastconnect_6900 video_collaboration_vc1_platform snapdragon_865_5g_mobile_firmware wcd9385_firmware fastconnect_6900_firmware wcd9380 sa6145p_firmware snapdragon_xr2_5g sa8150p snapdragon_680_4g_mobile sa6155p snapdragon_auto_5g_modem-rf_firmware wsa8810 sw5100 snapdragon_888_5g_mobile_firmware video_collaboration_vc3_platform qca6595au snapdragon_888_5g_mobile sa6155p_firmware snapdragon_685_4g_mobile_firmware qca6688aq qam8295p_firmware wcn3990_firmware snapdragon_660_mobile snapdragon_x55_5g_modem-rf qca6698aq_firmware qca6436_firmware snapdragon_888\+_5g_mobile wcd9385 snapdragon_8_gen_1_mobile snapdragon_x55_5g_modem-rf_firmware snapdragon_680_4g_mobile_firmware snapdragon_865\+_5g_mobile wcd9370_firmware snapdragon_auto_5g_modem-rf sxr2130 qca6174a sa8195p snapdragon_auto_5g_modem-rf_gen_2 qca6174a_firmware wcn3988 qcs6490_firmware qca6584au_firmware wcd9335_firmware wcn3980_firmware qca6436 wsa8835 qca6595au_firmware qca6391_firmware qcs610 sw5100p_firmware qca6696_firmware wcd9380_firmware sa6150p qcs410 sa8155p_firmware wsa8815 sd660 sg4150p sa8155p wsa8830 sa6145p snapdragon_865_5g_mobile wcd9375_firmware qca6391 snapdragon_865\+_5g_mobile_firmware qca6698aq sg4150p_firmware wcn3950_firmware sa8295p fastconnect_7800 sa8145p_firmware sd865_5g_firmware snapdragon_660_mobile_firmware qca6688aq_firmware wcd9375 sa8150p_firmware wcn3988_firmware fastconnect_6700_firmware video_collaboration_vc3_platform_firmware sa8145p wcn3990 wsa8835_firmware qcs6490 wcn3980 wsa8830_firmware snapdragon_8_gen_1_mobile_firmware Snapdragon qca6688aq_firmware qualcomm_video_collaboration_vc1_platform_firmware qca6574au_firmware sa4155p_firmware sd660_firmware wcd9380_firmware snapdragon_8_gen_1_mobile_platform_firmware sa6145p_firmware qca6584au_firmware sa6150p_firmware qca6391_firmware qualcomm_video_collaboration_vc3_platform_firmware qam8295p_firmware sa8155p_firmware snapdragon_auto_5g_modem-rf_firmware qcs410_firmware sa6155p_firmware qca6698aq_firmware wsa8835_firmware fastconnect_6700_firmware snapdragon_888_5g_mobile_platform_firmware qca6436_firmware wsa8810_firmware snapdragon_870_5g_mobile_platform_firmware qcs6490_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware sg4150p_firmware fastconnect_7800_firmware sa8150p_firmware snapdragon_865_5g_mobile_platform_firmware wcn3990_firmware sw5100_firmware sa8295p_firmware wcn3980_firmware snapdragon_865\+_5g_firmware wcn3950_firmware wsa8815_firmware sxr2130_firmware qcs610_firmware snapdragon_xr2_5g_platform_firmware wcd9341_firmware wcd9375_firmware wcd9385_firmware snapdragon_680_4g_mobile_platform_firmware sw5100p_firmware qca6696_firmware wcd9335_firmware snapdragon_660_mobile_platform_firmware wcn3988_firmware snapdragon_888\+_5g_mobile_platform_firmware sa8145p_firmware wcd9370_firmware fastconnect_6900_firmware sm6225-ad_firmware qca6174a_firmware snapdragon_x55_5g_modem-rf_system_firmware wsa8830_firmware sd865_5g_firmware fastconnect_6800_firmware sa8195p_firmware qca6595au_firmware sa4150p_firmware qca6426_firmware qca6595_firmware Multiple Chipsets

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Mar, 2025 | 10:07

Updated-03 Mar, 2025 | 13:10

Use After Free in Automotive Multimedia

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.03% / 6.79%

||

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-05 Feb, 2025 | 18:05

Use After Free in Audio

Memory corruption in Audio when SSR event is triggered after music playback is stopped.

Vendor-Qualcomm Technologies, Inc.

Product-qam8255p_firmware wsa8830 wcd9380_firmware sa6150p_firmware ssg2125p sa8145p_firmware sxr2230p_firmware sw5100p qam8650p sd865_5g sg8275p_firmware snapdragon_w5\+_gen_1_wearable_platform wcn785x-5 qca6595 qam8775p wsa8840 wsa8835 qca6574 sxr1230p_firmware wcn3950_firmware snapdragon_8\+_gen_2_mobile_platform_firmware wcd9380 sa8150p_firmware qca6595au_firmware ssg2125p_firmware qca6574a ssg2115p wcn685x-5_firmware sxr1230p wcn685x-1 sg8275p snapdragon_8_gen_2_mobile_platform wcn6750 wcn3980 wcd9385_firmware qam8295p wcn3950 wsa8845 qcm4325_firmware qca6574_firmware wsa8815 sxr2230p wsa8845_firmware qam8295p_firmware snapdragon_xr2_5g_platform_firmware qca6574a_firmware qca6574au_firmware qca6595au sm6225-ad wsa8845h_firmware wcn785x-5_firmware wcn3980_firmware sa8295p snapdragon_w5\+_gen_1_wearable_platform_firmware sm8475_firmware sa6155p_firmware sm6225 snapdragon_xr2_5g_platform sm6225-ad_firmware wsa8840_firmware qca6698aq sa4155p_firmware wsa8832_firmware wcn685x-5 sm6225_firmware wcn3988_firmware qca6797aq_firmware wcn785x-1_firmware qca6574au sa6145p_firmware sa8155p_firmware sa8195p wsa8810_firmware snapdragon_8\+_gen_2_mobile_platform sw5100 wsa8810 wsa8845h wsa8832 wcd9395_firmware sa8255p_firmware sa6155p sw5100p_firmware sm8550p qca6698aq_firmware sa6145p wcn685x-1_firmware wcd9385 qam8650p_firmware qam8775p_firmware sa8255p qca6696_firmware qca6595_firmware sa8145p wcd9395 qca6696 qca6797aq sa4150p_firmware wcn6750_firmware sa8150p sm8550p_firmware sa6150p wcd9390 wcd9390_firmware sa8155p wsa8830_firmware sd865_5g_firmware wcn3988 wsa8815_firmware wsa8835_firmware sa8195p_firmware ssg2115p_firmware sw5100_firmware sm8475 sa8295p_firmware qam8255p sa4155p sa4150p snapdragon_8_gen_2_mobile_platform_firmware wcn785x-1 qcm4325 Snapdragon

CWE ID-CWE-416

Use After Free

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.09% / 26.21%

||

7 Day CHG~0.00%

Published-16 Sep, 2022 | 05:25

Updated-03 Aug, 2024 | 03:00

Memory corruption in synx driver due to use-after-free condition in the synx driver due to accessing object handles without acquiring lock in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Vendor-Qualcomm Technologies, Inc.

Product-qcm2290_firmware wcn3991_firmware wcn3991 wsa8830 wcd9380_firmware qcs2290_firmware sd865_5g sdx55m_firmware wsa8835 qcs4290 wcn3950_firmware wcd9380 sd765g_firmware qcs2290 qca6390_firmware sd690_5g wcd9370 sd690_5g_firmware qca6426 qrb5165n_firmware wcn3998 sd439_firmware wcd9385_firmware sdxr2_5g_firmware wcn3950 sm4125 wcd9326_firmware wcn3615_firmware sd855 sm4125_firmware wcn6850 wsa8815 sd662 wcn3910 sd460_firmware sd765 qca6426_firmware wcn3680b_firmware sdx55_firmware sd768g_firmware wcd9375_firmware wcn3615 wcn3998_firmware qrb5165m sm7250p_firmware sd460 qca6391 sdx55m apq8053_firmware qca6436_firmware qrb5165n sd680_firmware msm8953 qcm4290 qrb5165_firmware qrb5165m_firmware sdxr2_5g qrb5165 wcn6851_firmware sd662_firmware wcn3988_firmware wsa8810_firmware sd765g wcd9341_firmware qcm4290_firmware sd765_firmware sd870 qca6436 sd680 wcd9326 wcn6851 wsa8810 wcn3680b qcs4290_firmware wcd9385 wcd9341 sd768g sd750g sd870_firmware qca6391_firmware qca6390 wcd9375 sd750g_firmware wcn3910_firmware wcd9370_firmware sdx55 msm8953_firmware apq8053 wsa8830_firmware sd855_firmware sd865_5g_firmware sd439 wcn3988 wcn6850_firmware wsa8815_firmware wsa8835_firmware sm7250p qcm2290 Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.08% / 24.50%

||

7 Day CHG~0.00%

Published-12 Oct, 2022 | 00:00

Updated-15 May, 2025 | 19:15

Memory corruption in graphics due to use-after-free in graphics dispatcher logic in Snapdragon Mobile

Vendor-Qualcomm Technologies, Inc.

Product-wcn6855 wsa8830 wcn6855_firmware sm8475 wcn7851_firmware wcn6856 wsa8830_firmware wcn7850_firmware wcn7850 wcn6856_firmware wsa8835 sd_8_gen1_5g_firmware wcd9380 wcn7851 wsa8835_firmware wcd9380_firmware Snapdragon Mobile

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.81% / 73.27%

||

7 Day CHG~0.00%

Published-14 Jun, 2022 | 09:51

Updated-30 Jul, 2025 | 01:37

Known KEV||Action Due Date - 2023-12-26||Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.

Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Vendor-Qualcomm Technologies, Inc.

Product-ar8031 qcm2290_firmware sd778g sd855_firmware wcn6851 wcn6850_firmware sd855 wcn3988_firmware sa6155p qcs2290 wcn3999_firmware qca6436 qcs4290_firmware csra6620 sd765_firmware wcn3980_firmware sd690_5g wcd9335 qrb5165 qca6595au sm7250p sd780g csra6620_firmware msm8953 qca6574au_firmware sd750g sdx55_firmware qca6696 wcd9380 apq8053 qcs405 sm4125_firmware ar8031_firmware wsa8830_firmware wsa8815 qcm4290 wsa8810 wcn3615_firmware sd662 qca6391 qca6391_firmware qca6436_firmware wcn6750 wcn6856_firmware wcn7850 qca8081_firmware qcm4290_firmware sdx55m qrb5165m_firmware sm7250p_firmware sd662_firmware qca6390_firmware qrb5165_firmware wcn3910 qca6426_firmware wcn3910_firmware sd439_firmware qca6574au wcn3999 qca6696_firmware mdm9150_firmware sdxr2_5g_firmware qcs410_firmware sdxr2_5g qca6595au_firmware sd750g_firmware qca6426 wcn3991_firmware sd765g sm4125 wcn3950_firmware wcn6855 sd865_5g sa8195p_firmware qcs6490_firmware qcs410 sdx55m_firmware wcd9326 sa8195p sd439 sd765 csra6640 qca6574 qrb5165n_firmware wcn3998 wsa8830 wcn3980 wsa8835_firmware qca6174a wsa8835 sd865_5g_firmware wcn6740_firmware wcn3680b_firmware wcn7851_firmware wcd9370_firmware wcn3988 sd460 wcn6850 sd765g_firmware sd680 wcn3660b wcn6855_firmware qca6574a_firmware wcd9341_firmware wcd9375_firmware sa6155p_firmware sd768g wcn3950 wcn7851 sdx65 sd870 wcn3998_firmware ar8035_firmware qcs6490 sd870_firmware sd888_5g qca8337_firmware qcm2290 qcs2290_firmware qca9377 qca6390 sd480_firmware sdx12 wcd9380_firmware qcs610 qca6574a csra6640_firmware wcd9335_firmware wcd9375 qca8337 sd690_5g_firmware sm7325p_firmware sdx12_firmware qcm6490 wcn3615 sd768g_firmware qcm6490_firmware qualcomm215 qca8081 sd695 wsa8810_firmware msm8953_firmware mdm9150 qca9377_firmware qcs405_firmware sd680_firmware sdx55 qrb5165n apq8053_firmware wcn3991 wcn3680b qrb5165m sa8155p wcn6851_firmware wcn6856 sd460_firmware wcd9370 sd480 qcs610_firmware wcn6740 qualcomm215_firmware ar8035 sm7325p wcd9341 wcn6750_firmware wcn3660b_firmware wcd9326_firmware qca6574_firmware sa8155p_firmware wcd9385_firmware sd780g_firmware sd695_firmware sd778g_firmware wcd9385 sd888_5g_firmware sdx65_firmware qcs4290 qca6174a_firmware wcn7850_firmware wsa8815_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Multiple Chipsets

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.07% / 21.25%

||

7 Day CHG~0.00%

Published-26 Sep, 2022 | 16:35

Updated-21 May, 2025 | 16:15

Memory corruption due to use after free issue in kernel while processing ION handles in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Vendor-Qualcomm Technologies, Inc.

Product-msm8909w sd439_firmware wcn3660_firmware sd439 qca6574au_firmware qca6310 wcd9330_firmware sd429_firmware msm8996au_firmware mdm9650_firmware msm8996au sd845 qca6574a_firmware qualcomm215_firmware mdm9206 qualcomm215 sd660 wsa8810_firmware qca6320 qca6595au apq8096au_firmware wcn3660 apq8053 sd835_firmware apq8017 qca6420 mdm9640 mdm9628_firmware wcn3980 wcn3680_firmware aqt1000_firmware qca6574_firmware wcd9326 wsa8810 sdx20_firmware wcn3998_firmware msm8937 qca9379_firmware aqt1000 qca9377 qca6335 sd820 qca6696 mdm9206_firmware qca6574a sd845_firmware sd429 qca6595au_firmware sdw2500_firmware qca9379 qca6574 sd450_firmware wcn3990_firmware sd855 apq8009_firmware wcd9330 wcn3620 sd670 wcd9340_firmware apq8009w_firmware sd632_firmware qca4020_firmware mdm9640_firmware wsa8815 qca6564a sdm429w_firmware qca6320_firmware mdm9607 qcn7606_firmware sd670_firmware qcs605_firmware sd855_firmware qca6564au_firmware msm8917 qca6564a_firmware sa415m_firmware wcn3680b mdm9607_firmware wcn3660b sd835 mdm9150 sd820_firmware apq8053_firmware qca6175a qca6335_firmware wcd9341_firmware qcs603 qca6564au qcs603_firmware wcn3680b_firmware msm8953 sd632 sd660_firmware wcn3610_firmware sdxr1_firmware sd710_firmware mdm9626 mdm9626_firmware qca4020 sa415m sdw2500 msm8937_firmware sd450 qca6584_firmware wcd9335_firmware qca6310_firmware qcn7606 mdm9250_firmware wcn3620_firmware qca6430_firmware sdm429w apq8096au mdm9250 qca6696_firmware qca6174a_firmware wcd9326_firmware apq8017_firmware sdx20 csrb31024_firmware qca9367_firmware pm8937_firmware wcn3998 wcn3615_firmware wcd9341 qca6175a_firmware qcn7605_firmware qca6174a qcs605 pm8937 wcn3660b_firmware msm8909w_firmware wsa8815_firmware wcd9335 wcn3615 csrb31024 qcn7605 mdm9628 qca6430 qca9377_firmware msm8953_firmware sd710 wcn3990 wcn3680 msm8917_firmware wcn3610 wcn3980_firmware qca9367 mdm9150_firmware mdm9650 apq8009 qca6574au sdxr1 wcd9340 sdx24 sdx24_firmware apq8009w qca6584 qca6420_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 15.40%

||

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 09:14

Use-after-free vulnerability will occur as there is no protection for the route table`s rule in IPA driver in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in versions MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24.

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware mdm9640_firmware sd_820a msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware mdm9206 sd_425_firmware sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 mdm9640 sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware msm8909w sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 sd_625 sd_210 mdm9607 sd_636_firmware sd_820_firmware sd_439_firmware mdm9150 sd_429_firmware sd_212_firmware sd_850_firmware sdm439_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_427 sd_430 sd_670 sd_435_firmware sd_710 sdx20_firmware sd_205 sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 11.47%

||

7 Day CHG~0.00%

Published-14 Jun, 2019 | 17:02

Updated-05 Aug, 2024 | 09:21

Use-after-free vulnerability will occur if reset of the routing table encounters an invalid rule id while processing command to reset in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, QCS405, QCS605, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_712 sd_850 mdm9150_firmware sd_855 sd_730_firmware sd_820a sd_675 sdx20 sd_670_firmware sdm660 sdx24 sdm630 mdm9607_firmware sd_710_firmware sd_636 mdm9650 qcs405 sd_625 msm8909w_firmware mdm9607 sd_636_firmware sd_820_firmware sd_820 sd_845_firmware sd_820a_firmware mdm9150 qcs605_firmware sd_675_firmware mdm9206 sd_730 sd_850_firmware sdx24_firmware sd_625_firmware qcs405_firmware sd_712_firmware sdm630_firmware sd_845 mdm9206_firmware qcs605 sd_670 sd_835_firmware mdm9650_firmware sd_710 sdx20_firmware sd_835 msm8909w sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 8.53%

||

7 Day CHG~0.00%

Published-24 May, 2019 | 16:44

Updated-05 Aug, 2024 | 09:14

Processing messages after error may result in user after free memory fault in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, Qualcomm 215, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SM7150

Vendor-Qualcomm Technologies, Inc.

Product-sd_712 sd_850 mdm9150_firmware sd_632 sd_855 sd_820a sd_675 sd_439 sdx20 sd_670_firmware sd_425 sd_429 sdm660 sdm439 mdm9607_firmware sd_710_firmware mdm9650 sd_636 sdm630 sdx24 sd_625 sm7150_firmware msm8909w_firmware mdm9607 qm215 sd_636_firmware sd_820_firmware sd_820 sd_450_firmware sd_845_firmware sm7150 sd_439_firmware sd_820a_firmware mdm9150 sd_429_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_850_firmware sdx24_firmware sd_625_firmware sd_450 sdm439_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_845 qm215_firmware qcs605 mdm9206_firmware sd_670 sd_632_firmware mdm9650_firmware sd_710 sdx20_firmware sda660 msm8909w sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 11.47%

||

7 Day CHG~0.00%

Published-24 May, 2019 | 16:44

Updated-05 Aug, 2024 | 09:21

Use-after-free condition due to Improper handling of hrtimers when the PMU driver tries to access its events in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, Qualcomm 215, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SD 855, SDM439, SDM630, SDM660, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_712 sd_850 sd_632 sd_855 sd_820a sd_439 sd_670_firmware sd_429 sd_425 sdm660 sdm439 mdm9607_firmware sd_710_firmware mdm9650 sd_636 sdm630 sdx24 sd_625 msm8909w_firmware mdm9607 qm215 sd_636_firmware sd_450_firmware sd_845_firmware sd_439_firmware sd_820a_firmware sd_429_firmware qcs605_firmware mdm9206 sd_425_firmware sd_850_firmware sdx24_firmware sd_625_firmware sd_450 sdm439_firmware sd_712_firmware sdm630_firmware sd_845 qm215_firmware qcs605 mdm9206_firmware sd_670 sd_632_firmware mdm9650_firmware sd_710 msm8909w sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 15.40%

||

7 Day CHG~0.00%

Published-25 Feb, 2019 | 23:00

Updated-05 Aug, 2024 | 09:14

KGSL syncsource lock not handled properly during syncsource cleanup can lead to use after free issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, SD 210/SD 212/SD 205, SD 439 / SD 429, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SD 855, SDM439, SDM660, SDX24.

Vendor-Qualcomm Technologies, Inc.

Product-sd_712 sd_850 sd_855 sd_820a sd_439 sd_670_firmware sd_429 sdm660 sdx24 sdm439 mdm9607_firmware sd_710_firmware mdm9650 msm8909w_firmware mdm9607 sd_210 sd_845_firmware sd_439_firmware sd_820a_firmware sd_429_firmware qcs605_firmware mdm9206 sd_212_firmware sd_850_firmware sdx24_firmware sdm439_firmware sd_712_firmware sd_845 mdm9206_firmware qcs605 sd_670 mdm9650_firmware sd_710 sd_205 sd_210_firmware msm8909w sd_205_firmware sdm660_firmware sd_212 sd_855_firmware Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 3.18%

||

7 Day CHG~0.00%

Published-11 Feb, 2019 | 15:00

Updated-05 Aug, 2024 | 09:14

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Heap memory was accessed after it was freed

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.12%

||

7 Day CHG~0.00%

Published-20 Dec, 2018 | 15:00

Updated-05 Aug, 2024 | 08:24

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, A use after free condition can occur in the SPS driver which can lead to error in kernel.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.12%

||

7 Day CHG~0.00%

Published-11 Feb, 2019 | 15:00

Updated-05 Aug, 2024 | 08:24

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Use-after-free issue in heap while loading audio effects config in audio effects factory.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 2.92%

||

7 Day CHG~0.00%

Published-18 Sep, 2018 | 18:00

Updated-05 Aug, 2024 | 08:17

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack fo check on return value in WMA response handler can lead to potential use after free.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 3.18%

||

7 Day CHG~0.00%

Published-11 Feb, 2019 | 15:00

Updated-05 Aug, 2024 | 08:24

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Null pointer dereference vulnerability may occur due to missing NULL assignment in NAT module of freed pointer.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

CWE ID-CWE-476

NULL Pointer Dereference

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.48%

||

7 Day CHG~0.00%

Published-26 Nov, 2024 | 13:56

Updated-06 Feb, 2025 | 16:41

Use After Free in Video

Crafted Binder Request Causes Heap UAF in MediaServer

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 5.57%

||

7 Day CHG~0.00%

Published-18 Sep, 2018 | 18:00

Updated-05 Aug, 2024 | 08:01

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while calling IPA_IOC_MDFY_RT_RULE IPA IOCTL, header entry is not checked before use. If IPA_IOC_MDFY_RT_RULE IOCTL called for header entries formerly deleted, a Use after free condition will occur.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 14.13%

||

7 Day CHG~0.00%

Published-26 Oct, 2018 | 13:00

Updated-05 Aug, 2024 | 08:01

When a series of FDAL messages are sent to the modem, a Use After Free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDA660, SDX20.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 2.92%

||

7 Day CHG~0.00%

Published-20 Dec, 2018 | 15:00

Updated-05 Aug, 2024 | 17:18

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, There is no synchronization between msm_vb2 buffer operations which can lead to use after free.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.26%

||

7 Day CHG~0.00%

Published-12 May, 2017 | 20:00

Updated-20 Apr, 2025 | 01:37

In function msm_pcm_playback_close() in all Android releases from CAF using the Linux kernel, prtd is assigned substream->runtime->private_data. Later, prtd is freed. However, prtd is not sanitized and set to NULL, resulting in a dangling pointer. There are other functions that access the same memory (substream->runtime->private_data) with a NULL check, such as msm_pcm_volume_ctl_put(), which means this freed memory could be used.

Vendor-Google LLC Qualcomm Technologies, Inc.

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 11.83%

||

7 Day CHG~0.00%

Published-03 Jan, 2019 | 15:00

Updated-05 Aug, 2024 | 21:20

Use after free in QSH client rule processing in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 820, SD 835, SDA660, SDM630, SDM660, Snapdragon_High_Med_2016.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 26.38%

||

7 Day CHG~0.00%

Published-06 May, 2019 | 22:31

Updated-05 Aug, 2024 | 21:13

A Use After Free Condition can occur in Thermal Engine in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDX20.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 26.38%

||

7 Day CHG~0.00%

Published-06 May, 2019 | 22:28

Updated-05 Aug, 2024 | 21:13

While processing camera buffers in camera driver, a use after free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 625, SD 820, SD 820A, SD 835, SDX20.

Vendor-Qualcomm Technologies, Inc.

Product-mdm9206 sd_212_firmware sd_820a sd_625_firmware msm8996au_firmware sdx20 mdm9206_firmware mdm9607_firmware mdm9650 sd_625 sd_210 mdm9607 msm8996au sd_820_firmware sd_820 sd_835_firmware mdm9650_firmware sdx20_firmware sd_835 sd_205 sd_210_firmware sd_820a_firmware sd_205_firmware sd_212 Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.16% / 36.97%

||

7 Day CHG-0.01%

Published-01 Jul, 2024 | 14:17

Updated-01 Aug, 2024 | 23:06

Use After Free in Graphics

Memory corruption while handling user packets during VBO bind operation.

Vendor-Qualcomm Technologies, Inc.

Product-qam8255p_firmware snapdragon_8_gen_1_mobile_platform talynplus_firmware snapdragon_662_mobile_platform_firmware wsa8830 sxr2230p_firmware qam8650p qam8775p qamsrv1m flight_rb5_5g_platform flight_rb5_5g_platform_firmware wsa8840 wcn3950_firmware srv1l_firmware qca6595au_firmware video_collaboration_vc3_platform snapdragon_480_5g_mobile_platform wcd9370 ssg2115p qcm5430_firmware qcs6125_firmware snapdragon_460_mobile_platform_firmware snapdragon_480_5g_mobile_platform_firmware wcn3990_firmware qrb5165n_firmware snapdragon_8_gen_2_mobile_platform qamsrv1h wcd9385_firmware qam8295p wcn3950 talynplus fastconnect_6200 qamsrv1h_firmware sd_8_gen1_5g_firmware snapdragon_460_mobile_platform qam8295p_firmware sa9000p_firmware qca6320_firmware snapdragon_695_5g_mobile_platform_firmware qca6574au_firmware snapdragon_835_mobile_pc_platform_firmware sa7255p snapdragon_4_gen_2_mobile_platform qca6595au sm6225-ad snapdragon_8_gen_3_mobile_platform wcd9375_firmware wsa8845h_firmware sm4350-ac qrb5165n snapdragon_680_4g_mobile_platform_firmware snapdragon_w5\+_gen_1_wearable_platform_firmware sa8620p_firmware sa6155p_firmware qca6310 qcm8550_firmware qca6678aq_firmware sa8775p_firmware sm6225-ad_firmware qcs6490 wsa8840_firmware qca6698aq qcs6125 video_collaboration_vc5_platform qcs8550_firmware wcn3988_firmware srv1h sa7775p_firmware snapdragon_8\+_gen_1_mobile_platform fastconnect_6700_firmware sa8195p wcd9340 wsa8810_firmware sw5100 wsa8845h snapdragon_ar2_gen_1_platform_firmware sa8255p_firmware sa6155p qcs7230 sg4150p wcd9335 wcd9395_firmware qca6698aq_firmware qcm4490 sa7775p qam8620p qcs5430 sxr2250p sa8770p_firmware wcd9341 qam8775p_firmware sa8255p wcd9385 qca6696_firmware qcs6490_firmware qca6797aq wcd9375 wcd9390 robotics_rb5_platform snapdragon_662_mobile_platform wsa8830_firmware qcm6490 wcn3988 wsa8815_firmware wsa8835_firmware sa8195p_firmware video_collaboration_vc5_platform_firmware sa8295p_firmware sxr2250p_firmware sg4150p_firmware sa8770p snapdragon_8_gen_2_mobile_platform_firmware qcm6125_firmware robotics_rb5_platform_firmware wcd9380_firmware ssg2125p wcn3990 sw5100p snapdragon_w5\+_gen_1_wearable_platform qca6595 qcm8550 qcs7230_firmware snapdragon_835_mobile_pc_platform wsa8835 qca6574 sxr1230p_firmware snapdragon_8\+_gen_2_mobile_platform_firmware sd_8_gen1_5g wcd9380 fastconnect_6700 snapdragon_4_gen_1_mobile_platform_firmware snapdragon_4_gen_2_mobile_platform_firmware ssg2125p_firmware qca6574a sxr1230p video_collaboration_vc3_platform_firmware qca6310_firmware wcd9335_firmware wcn3980 wsa8845 sa8650p sa9000p qca6574_firmware wcd9340_firmware wsa8815 sxr2230p qca6320 wsa8845_firmware snapdragon_4_gen_1_mobile_platform qcs8250 qca6574a_firmware fastconnect_6200_firmware sa8775p sd835 wcn3980_firmware qca6391 sa8295p fastconnect_7800 qcm4490_firmware qcs4490_firmware qca6678aq qcm6490_firmware sa8650p_firmware wsa8832_firmware fastconnect_6900 fastconnect_6900_firmware srv1h_firmware video_collaboration_vc1_platform_firmware qca6797aq_firmware qca6574au sa8155p_firmware srv1l sa7255p_firmware qcs8250_firmware wcd9341_firmware fastconnect_7800_firmware qcm6125 sa8620p snapdragon_8\+_gen_2_mobile_platform wsa8810 wsa8832 sw5100p_firmware sm8550p snapdragon_680_4g_mobile_platform snapdragon_8_gen_1_mobile_platform_firmware qamsrv1m_firmware snapdragon_ar2_gen_1_platform qcm5430 srv1m_firmware sd835_firmware qam8650p_firmware qcs4490 qca6595_firmware wcd9395 qca6696 qcs5430_firmware qca6391_firmware qcs8550 wcd9370_firmware sm8550p_firmware sm4350-ac_firmware snapdragon_8_gen_3_mobile_platform_firmware wcd9390_firmware sa8155p snapdragon_695_5g_mobile_platform video_collaboration_vc1_platform srv1m snapdragon_8\+_gen_1_mobile_platform_firmware ssg2115p_firmware sw5100_firmware qam8620p_firmware qam8255p Snapdragon qam8255p_firmware qualcomm_video_collaboration_vc1_platform_firmware talynplus_firmware snapdragon_662_mobile_platform_firmware robotics_rb5_platform_firmware wcd9380_firmware sxr2230p_firmware qcs7230_firmware flight_rb5_5g_platform_firmware sxr1230p_firmware wcn3950_firmware srv1l_firmware qca6595au_firmware snapdragon_4_gen_1_mobile_platform_firmware snapdragon_4_gen_2_mobile_platform_firmware ssg2125p_firmware qcm5430_firmware qcs6125_firmware snapdragon_460_mobile_platform_firmware snapdragon_480_5g_mobile_platform_firmware wcn3990_firmware qrb5165n_firmware qca6310_firmware wcd9335_firmware qualcomm_video_collaboration_vc3_platform_firmware wcd9385_firmware qamsrv1h_firmware qca6574_firmware sd_8_gen1_5g_firmware wcd9340_firmware wsa8845_firmware qam8295p_firmware sa9000p_firmware qca6320_firmware snapdragon_695_5g_mobile_platform_firmware qca6574au_firmware snapdragon_835_mobile_pc_platform_firmware qca6574a_firmware fastconnect_6200_firmware wcd9375_firmware wsa8845h_firmware wcn3980_firmware snapdragon_680_4g_mobile_platform_firmware sa8620p_firmware sa6155p_firmware qcm8550_firmware qcm4490_firmware qca6678aq_firmware qcs4490_firmware sa8775p_firmware qcm6490_firmware wsa8840_firmware sa8650p_firmware wsa8832_firmware fastconnect_6900_firmware srv1h_firmware qcs8550_firmware wcn3988_firmware qca6797aq_firmware sa8155p_firmware sa7775p_firmware fastconnect_6700_firmware sa7255p_firmware wsa8810_firmware qcs8250_firmware wcd9341_firmware fastconnect_7800_firmware snapdragon_ar2_gen_1_platform_firmware sa8255p_firmware wcd9395_firmware sw5100p_firmware snapdragon_8_gen_1_mobile_platform_firmware qca6698aq_firmware qamsrv1m_firmware srv1m_firmware sd835_firmware qam8650p_firmware sa8770p_firmware qam8775p_firmware qca6696_firmware qcs6490_firmware qca6595_firmware qcs5430_firmware qca6391_firmware wcd9370_firmware sm8550p_firmware qualcomm_video_collaboration_vc5_platform_firmware snapdragon_8_gen_3_mobile_platform_firmware wcd9390_firmware wsa8830_firmware wsa8815_firmware sxr2250p_firmware wsa8835_firmware sa8195p_firmware ssg2115p_firmware sw5100_firmware qam8620p_firmware sa8295p_firmware sg4150p_firmware snapdragon_8_gen_2_mobile_platform_firmware qcm6125_firmware

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.03% / 8.29%

||

7 Day CHG~0.00%

Published-05 Aug, 2024 | 14:21

Updated-26 Nov, 2024 | 16:42

Use After Free in Graphics Linux

Memory corruption while processing graphics kernel driver request to create DMA fence.

Vendor-Qualcomm Technologies, Inc.

Product-qam8255p_firmware snapdragon_8_gen_1_mobile_platform talynplus_firmware snapdragon_662_mobile_platform_firmware wsa8830 sxr2230p_firmware qam8650p sg8275p_firmware qam8775p qamsrv1m flight_rb5_5g_platform flight_rb5_5g_platform_firmware wsa8840 wcn3950_firmware srv1l_firmware qca6595au_firmware snapdragon_480_5g_mobile_platform video_collaboration_vc3_platform wcd9370 ssg2115p qcm5430_firmware qcs6125_firmware snapdragon_460_mobile_platform_firmware snapdragon_480_5g_mobile_platform_firmware wcn3990_firmware qrb5165n_firmware snapdragon_8_gen_2_mobile_platform qamsrv1h wcd9385_firmware qam8295p wcn3950 talynplus fastconnect_6200 qamsrv1h_firmware sd_8_gen1_5g_firmware snapdragon_460_mobile_platform qam8295p_firmware sa9000p_firmware snapdragon_695_5g_mobile_platform_firmware qca6574au_firmware sa7255p snapdragon_4_gen_2_mobile_platform qca6595au snapdragon_8_gen_3_mobile_platform wcd9375_firmware wsa8845h_firmware snapdragon_680_4g_mobile_platform_firmware qrb5165n snapdragon_w5\+_gen_1_wearable_platform_firmware sa8620p_firmware sa6155p_firmware qcm8550_firmware qca6678aq_firmware sa8775p_firmware qcs6490 wsa8840_firmware qca6698aq qcs6125 video_collaboration_vc5_platform qcs8550_firmware wcn3988_firmware srv1h sa7775p_firmware snapdragon_8\+_gen_1_mobile_platform fastconnect_6700_firmware sa8195p wsa8810_firmware vision_intelligence_400_platform sw5100 wsa8845h snapdragon_ar2_gen_1_platform_firmware sa8255p_firmware sa6155p qcs7230 sg4150p wcd9335 wcd9395_firmware qca6698aq_firmware qcm4490 sa7775p qam8620p qcs5430 snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)sxr2250p sa8770p_firmware wcd9341 qam8775p_firmware sa8255p wcd9385 qca6696_firmware qcs6490_firmware qca6797aq wcd9375 wcd9390 robotics_rb5_platform vision_intelligence_400_platform_firmware snapdragon_662_mobile_platform wsa8830_firmware qcm6490 wcn3988 wsa8815_firmware wsa8835_firmware sa8195p_firmware video_collaboration_vc5_platform_firmware sa8295p_firmware sxr2250p_firmware sg4150p_firmware sa8770p snapdragon_8_gen_2_mobile_platform_firmware qcm6125_firmware qcm4325 robotics_rb5_platform_firmware wcd9380_firmware ssg2125p wcn3990 sw5100p snapdragon_w5\+_gen_1_wearable_platform qca6595 qcm8550 qcs7230_firmware wsa8835 qca6574 sxr1230p_firmware snapdragon_8\+_gen_2_mobile_platform_firmware sd_8_gen1_5g wcd9380 snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmware fastconnect_6700 snapdragon_4_gen_1_mobile_platform_firmware snapdragon_4_gen_2_mobile_platform_firmware ssg2125p_firmware qca6574a sxr1230p snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmware video_collaboration_vc3_platform_firmware sg8275p wcd9335_firmware wcn3980 wsa8845 qcm4325_firmware sa8650p qca6574_firmware sa9000p wsa8815 sxr2230p wsa8845_firmware snapdragon_4_gen_1_mobile_platform qcs8250 qca6574a_firmware fastconnect_6200_firmware sa8775p wcn3980_firmware qca6391 sa8295p fastconnect_7800 qcm4490_firmware qcs4490_firmware qca6678aq qcm6490_firmware sa8650p_firmware wsa8832_firmware fastconnect_6900 fastconnect_6900_firmware srv1h_firmware video_collaboration_vc1_platform_firmware qca6797aq_firmware qca6574au sa8155p_firmware srv1l sa7255p_firmware qcs8250_firmware wcd9341_firmware fastconnect_7800_firmware qcm6125 sa8620p snapdragon_8\+_gen_2_mobile_platform wsa8810 wsa8832 sw5100p_firmware sm8550p snapdragon_680_4g_mobile_platform snapdragon_8_gen_1_mobile_platform_firmware qamsrv1m_firmware snapdragon_ar2_gen_1_platform qcm5430 srv1m_firmware qam8650p_firmware qcs4490 qca6595_firmware wcd9395 qca6696 qcs5430_firmware qca6391_firmware qcs8550 wcd9370_firmware sm8550p_firmware snapdragon_8_gen_3_mobile_platform_firmware wcd9390_firmware sa8155p snapdragon_695_5g_mobile_platform video_collaboration_vc1_platform srv1m snapdragon_8\+_gen_1_mobile_platform_firmware ssg2115p_firmware sw5100_firmware qam8620p_firmware qam8255p snapdragon_685_4g_mobile_platform_\(sm6225-ad\)Snapdragon qam8255p_firmware qualcomm_video_collaboration_vc1_platform_firmware talynplus_firmware snapdragon_662_mobile_platform_firmware robotics_rb5_platform_firmware wcd9380_firmware sxr2230p_firmware sg8275p_firmware qcs7230_firmware flight_rb5_5g_platform_firmware sxr1230p_firmware wcn3950_firmware srv1l_firmware qca6595au_firmware snapdragon_4_gen_1_mobile_platform_firmware sa8295p_firmware snapdragon_4_gen_2_mobile_platform_firmware ssg2125p_firmware qcm5430_firmware qcs6125_firmware snapdragon_460_mobile_platform_firmware snapdragon_480_5g_mobile_platform_firmware wcn3990_firmware qrb5165n_firmware wcd9335_firmware qualcomm_video_collaboration_vc3_platform_firmware wcd9385_firmware qcm4325_firmware qamsrv1h_firmware qca6574_firmware sd_8_gen1_5g_firmware wsa8845_firmware qam8295p_firmware sa9000p_firmware qca6574a_firmware snapdragon_695_5g_mobile_platform_firmware qca6574au_firmware fastconnect_6200_firmware wcd9375_firmware wsa8845h_firmware wcn3980_firmware snapdragon_680_4g_mobile_platform_firmware sa8620p_firmware sa6155p_firmware qcm8550_firmware qcm4490_firmware qca6678aq_firmware qcs4490_firmware sa8775p_firmware qcm6490_firmware wsa8840_firmware sa8650p_firmware wsa8832_firmware fastconnect_6900_firmware srv1h_firmware qcs8550_firmware wcn3988_firmware qca6797aq_firmware sa8155p_firmware sa7775p_firmware fastconnect_6700_firmware sa7255p_firmware wsa8810_firmware qcs8250_firmware wcd9341_firmware fastconnect_7800_firmware snapdragon_ar2_gen_1_platform_firmware sa8255p_firmware wcd9395_firmware sw5100p_firmware snapdragon_8_gen_1_mobile_platform_firmware qca6698aq_firmware qamsrv1m_firmware srv1m_firmware qam8650p_firmware sa8770p_firmware qam8775p_firmware qca6696_firmware qcs6490_firmware qca6595_firmware qcs5430_firmware qca6391_firmware wcd9370_firmware sm8550p_firmware qualcomm_video_collaboration_vc5_platform_firmware vision_intelligence_400_platform_firmware snapdragon_8_gen_3_mobile_platform_firmware wcd9390_firmware wsa8830_firmware wsa8815_firmware wsa8835_firmware sa8195p_firmware ssg2115p_firmware sw5100_firmware qam8620p_firmware sxr2250p_firmware sg4150p_firmware snapdragon_8_gen_2_mobile_platform_firmware qcm6125_firmware

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-6.7||MEDIUM

EPSS-0.04% / 10.94%

||

7 Day CHG~0.00%

Published-12 Nov, 2021 | 06:15

Updated-03 Aug, 2024 | 22:24

Possible race condition can occur due to lack of synchronization mechanism when On-Device Logging node open twice concurrently in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Mar, 2025 | 10:07

Updated-11 Aug, 2025 | 15:06

Use After Free in Automotive Android OS

Memory corruption may occur while accessing a variable during extended back to back tests.

Vendor-Qualcomm Technologies, Inc.

Product-qdx1010_firmware qca6678aq_firmware qcm8550_firmware sdm429w_firmware sw5100p wsa8832 wsa8845_firmware qca6595 srv1l wcd9335 srv1m qca6678aq qca8081_firmware wcd9370 ar8035_firmware qca6696 qam8620p_firmware wsa8830_firmware wcd9340_firmware wcd9341_firmware wcd9395_firmware qcc710_firmware snapdragon_685_4g_mobile wsa8832_firmware sa8195p_firmware qca8337_firmware qca8337 qdu1110 wcd9395 qca6574au_firmware qam8295p wcd9341 qca6574au qru1032 vision_intelligence_400_firmware sa8620p_firmware wcd9390 wcn3950 wsa8810_firmware wsa8845h_firmware sa9000p_firmware srv1h qca6797aq_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware wcn3660b_firmware sa8295p_firmware sa8770p qca6584au qcn6274_firmware qcc710 qru1062_firmware sw5100_firmware sa8540p qru1062 qfw7114_firmware qca6595_firmware qcs7230 fastconnect_6900 fastconnect_7800_firmware snapdragon_w5\+_gen_1_wearable_firmware snapdragon_x72_5g qru1032_firmware qep8111 sa7255p qfw7114 wcd9385_firmware fastconnect_6900_firmware qam8255p_firmware wcd9380 qam8255p sxr2230p snapdragon_680_4g_mobile wsa8845 sa6155p snapdragon_429_mobile_firmware wsa8810 qam8650p qdu1000_firmware video_collaboration_vc5_platform_firmware sa9000p srv1h_firmware sw5100 qca6595au sxr2250p_firmware qdu1010 snapdragon_662_mobile_firmware sa6155p_firmware snapdragon_685_4g_mobile_firmware wsa8840 qca6688aq qam8295p_firmware srv1m_firmware qcs8550_firmware qdu1210_firmware wcn3990_firmware snapdragon_8_gen_2_mobile_firmware qfw7124_firmware qca6698aq_firmware wcd9385 snapdragon_x35_5g_firmware snapdragon_680_4g_mobile_firmware sa8255p qcs7230_firmware wcd9390_firmware snapdragon_460_mobile snapdragon_8_gen_2_mobile qep8111_firmware wcd9370_firmware qdx1011_firmware qdu1110_firmware qdu1000 sa7255p_firmware qca6574a snapdragon_8\+_gen_2_mobile qru1052 wcn3620_firmware wcn3660b qca6174a sa8195p wcd9340 qcs8250_firmware qdu1210 qamsrv1m snapdragon_auto_5g_modem-rf_gen_2 qca6174a_firmware sa8540p_firmware qam8650p_firmware video_collaboration_vc5_platform sm8550p_firmware sxr2250p qcm8550 wcn3988 snapdragon_662_mobile sdm429w qam8620p qca6584au_firmware qcn6274 qca6574 qfw7124 sa8775p snapdragon_w5\+_gen_1_wearable qca6595au_firmware qca6391_firmware sxr2230p_firmware wsa8835 wsa8840_firmware qdu1010_firmware sw5100p_firmware sa8775p_firmware qamsrv1h qca6696_firmware wsa8845h wcd9380_firmware qca6574_firmware sa8155p_firmware qca8081 sg4150p sa8155p wcd9335_firmware wsa8830 qam8775p qca6797aq sm8550p snapdragon_x35_5g qcm4325_firmware sa8620p sa8255p_firmware snapdragon_x75_5g ar8035 qca6574a_firmware qamsrv1m_firmware sa8650p_firmware wcn3620 qcm4325 snapdragon_x72_5g_firmware wcd9375_firmware sa7775p qca6391 snapdragon_x75_5g_firmware srv1l_firmware qcn6224 snapdragon_429_mobile qca6698aq sa7775p_firmware sg4150p_firmware qru1052_firmware sa8770p_firmware sa8295p wcn3950_firmware qcs8550 fastconnect_7800 sa8650p qam8775p_firmware snapdragon_8\+_gen_2_mobile_firmware qca6688aq_firmware qdx1011 wcd9375 wcn3988_firmware qamsrv1h_firmware wcn3990 vision_intelligence_400 wsa8835_firmware qcs8250 qdx1010 snapdragon_460_mobile_firmware qcn6224_firmware Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 14.52%

||

7 Day CHG~0.00%

Published-02 May, 2023 | 05:08

Updated-03 Aug, 2024 | 08:01

Use after free in Qualcomm IPC

Memory corruption in Qualcomm IPC due to use after free while receiving the incoming packet and reposting it.

Vendor-Qualcomm Technologies, Inc.

Product-sm6225 sm6225-ad_firmware wcn3950 wcd9375 wcd9370_firmware sm6225_firmware wcn3988_firmware wcn3950_firmware wcn3988 wsa8810_firmware wsa8810 wcd9375_firmware sm6225-ad sg4150p wcd9370 sg4150p_firmware Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 5.87%

||

7 Day CHG~0.00%

Published-06 Jan, 2025 | 10:33

Updated-11 Aug, 2025 | 15:06

Use After Free in DSP Services

Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.

Vendor-Qualcomm Technologies, Inc.

Product-qdx1010_firmware sw5100p wcn6650 qca6595 wcd9370 qca8081_firmware qca6696 qam8620p_firmware wcd9340_firmware wcd9395_firmware wcn7881_firmware wcn6450 qcc710_firmware snapdragon_8\+_gen_1_mobile fastconnect_6700 snapdragon_685_4g_mobile wsa8832_firmware qca8337 qdu1110 wcd9395 qca6574au_firmware snapdragon_x72_5g_modem-rf qam8295p qca6574au wcd9390 sa8620p_firmware wsa8810_firmware wsa8845h_firmware sa9000p_firmware srv1h sa8770p ssg2115p qcc710 fastconnect_6900 snapdragon_w5\+_gen_1_wearable_firmware qru1032_firmware qep8111 sa7255p sm8635 qfw7114 wcd9385_firmware qam8255p_firmware qcs4490 snapdragon_680_4g_mobile wsa8845 sa6155p wsa8810 qam8650p qdu1000_firmware video_collaboration_vc5_platform_firmware sa9000p srv1h_firmware qca6595au sxr2250p_firmware qdu1010 snapdragon_662_mobile_firmware sa6155p_firmware snapdragon_685_4g_mobile_firmware wsa8840 snapdragon_ar1_gen_1 srv1m_firmware qcs8550_firmware snapdragon_x35_5g_modem-rf_firmware qdu1210_firmware snapdragon_8_gen_2_mobile_firmware qfw7124_firmware snapdragon_4_gen_2_mobile_firmware snapdragon_695_5g_mobile_firmware qcs4490_firmware sm8635p snapdragon_460_mobile snapdragon_8_gen_2_mobile wcd9370_firmware qdu1110_firmware qdu1000 sa7255p_firmware qca6574a snapdragon_8\+_gen_2_mobile snapdragon_x72_5g_modem-rf_firmware qca6174a sa8195p wcd9340 qcs8250_firmware qdu1210 talynplus snapdragon_auto_5g_modem-rf_gen_2 sm8550p_firmware sxr2250p wcn3988 snapdragon_662_mobile sa8775p qca6574 sxr2230p_firmware sa8775p_firmware qamsrv1h wsa8845h sa8155p_firmware sa8155p wsa8830 sm8550p sm7675_firmware sa8255p_firmware ar8035 qamsrv1m_firmware sm7635_firmware snapdragon_4_gen_2_mobile sa8650p_firmware wcn6450_firmware qcm4325 srv1l_firmware qcn6224 qca6698aq wcn3950_firmware sa7775p_firmware sm7635 qrb5165n ssg2125p_firmware snapdragon_480\+_5g_mobile fastconnect_6200 wcd9378 snapdragon_480_5g_mobile_firmware sm8635p_firmware qdx1011 fastconnect_6700_firmware snapdragon_x75_5g_modem-rf_firmware snapdragon_8_gen_3_mobile qcs8250 snapdragon_695_5g_mobile fastconnect_6200_firmware wsa8830_firmware snapdragon_460_mobile_firmware qcn6224_firmware wsa8845_firmware wsa8832 wcd9378_firmware snapdragon_480_5g_mobile srv1l sm7675p srv1m snapdragon_x35_5g_modem-rf ar8035_firmware sm4635 wsa8815_firmware sa8195p_firmware qca8337_firmware sm4635_firmware qcm4490_firmware qru1032 wcn3950 flight_rb5_5g qca6797aq_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware talynplus_firmware sa8295p_firmware qca6584au qcn6274_firmware wcn6755_firmware qru1062_firmware sw5100_firmware wcn6650_firmware qru1062 snapdragon_8_gen_3_mobile_firmware qfw7114_firmware qca6595_firmware qcs7230 fastconnect_7800_firmware sm8635_firmware fastconnect_6900_firmware robotics_rb5_firmware wcd9380 qam8255p sxr2230p wcn6755 sxr1230p sm6650 wcn7881 sw5100 snapdragon_4_gen_1_mobile_firmware qca6688aq qam8295p_firmware qca6698aq_firmware wcd9385 snapdragon_8_gen_1_mobile snapdragon_680_4g_mobile_firmware sa8255p qcs7230_firmware sxr1230p_firmware wcd9390_firmware qep8111_firmware qdx1011_firmware flight_rb5_5g_firmware ssg2125p qru1052 qcm4490 snapdragon_480\+_5g_mobile_firmware qamsrv1m robotics_rb5 qca6174a_firmware wcn7861_firmware wcn7861 qam8650p_firmware video_collaboration_vc5_platform sm6650_firmware qam8620p qca6584au_firmware qcn6274 qrb5165n_firmware qfw7124 wsa8835 qca6595au_firmware qca6391_firmware wsa8840_firmware qdu1010_firmware sw5100p_firmware qca6696_firmware wcd9380_firmware qca6574_firmware qca8081 wsa8815 sg4150p sd_8_gen1_5g qam8775p qca6797aq snapdragon_ar2_gen_1_firmware snapdragon_x75_5g_modem-rf qcm4325_firmware sa8620p qca6574a_firmware snapdragon_4_gen_1_mobile sd_8_gen1_5g_firmware wcd9375_firmware sa7775p qca6391 snapdragon_ar1_gen_1_firmware sg4150p_firmware qru1052_firmware sa8770p_firmware sa8295p qcs8550 fastconnect_7800 sa8650p qam8775p_firmware snapdragon_8\+_gen_2_mobile_firmware qca6688aq_firmware wcd9375 snapdragon_ar2_gen_1 wcn3988_firmware qamsrv1h_firmware sm7675 snapdragon_8\+_gen_1_mobile_firmware wsa8835_firmware ssg2115p_firmware sm7675p_firmware qdx1010 snapdragon_w5\+_gen_1_wearable snapdragon_8_gen_1_mobile_firmware Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.09% / 26.27%

||

7 Day CHG~0.00%

Published-14 Jun, 2022 | 10:10

Updated-03 Aug, 2024 | 22:32

Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

Vendor-Qualcomm Technologies, Inc.

Product-fsm10055 qca9377_firmware sa6150p_firmware sm6250p_firmware qcs610 qca8337 wcd9360_firmware sdx65 wcn3950_firmware sa8150p_firmware qcs2290 qca6595au_firmware sa6155 csra6620_firmware qcs605_firmware sd_675_firmware csra6640_firmware qcs6125_firmware sa415m wcn3998 qam8295p wcn3950 sd720g qsw8573_firmware sd_8_gen1_5g_firmware sm6375_firmware sd460_firmware sm7315_firmware qca6574au_firmware wcd9375_firmware wcn3998_firmware qca8081_firmware sa6155_firmware msm8909w apq8009w_firmware wcd9360 wcn3999 qrb5165_firmware qrb5165m_firmware sa4155p_firmware qcs6125 sa8155_firmware sd662_firmware qcs405 sd765g sw5100 fsm10056_firmware qca6436 wcn6851 sa6155p qcs603_firmware qca6696_firmware sd750g sd870_firmware wcn3910_firmware sxr2150p_firmware sa8150p wsa8830_firmware sd855_firmware sd660 sd865_5g_firmware wcn3988 sd660_firmware sa8195p_firmware sm8475 sa8295p_firmware wcn6750_firmware wcn3610 sm6375 wcn3991 qca8337_firmware sda429w_firmware wcd9380_firmware sdm429w sw5100p qca6564au sdx55m_firmware wcn6856_firmware qet4101_firmware qca6574 wcd9380 qcs410 sd690_5g_firmware sdx24_firmware qcn9012_firmware wcd9335_firmware sd439_firmware qsw8573 qcs605 wcn6850 wcn3910 qca6426_firmware sd730 sdx55m sa8295p wcn6740_firmware sd678_firmware ar8031_firmware qrb5165 wcn6851_firmware qcs603 qca6564a_firmware apq8009w qcm4290_firmware sd480 sd870 wcn6855 sw5100p_firmware sd210_firmware qcs610_firmware qsm8250 sa6145p sdxr1 ar8031 qcs405_firmware sa8145p qca6391_firmware sa4150p_firmware sd780g_firmware wcd9370_firmware sdx55 sd888_firmware sa8155p csra6640 sd675 sd439 qet4101 qcs8155_firmware sa4155p sxr2150p ar8035_firmware qcm2290 qsm8250_firmware wcn3991_firmware mdm9150_firmware wsa8830 sd678 sa8145p_firmware qcs2290_firmware fsm10056 csrb31024 csra6620 fsm10055_firmware qcs4290 sd765g_firmware qca6390_firmware sd690_5g sd730_firmware wcd9370 sd675_firmware qca6564 qca6426 qrb5165n_firmware qca9377 wcd9385_firmware sdxr2_5g_firmware sd662 qam8295p_firmware qcn9011_firmware sa8155 sdx55_firmware qca6595au wcn3999_firmware sm7250p_firmware wcn3610_firmware qca6436_firmware qrb5165n qca6564au_firmware sd778g sa6155p_firmware qcs8155 sa515m_firmware qcs6490 sd429 sdxr2_5g sa415m_firmware wcn3988_firmware sa6145p_firmware sd205 sd429_firmware sd778g_firmware sm6250 sa8195p sd765_firmware wcd9335 qca8081 qca6174a_firmware qcs4290_firmware wcd9385 qcs6490_firmware ar8035 qca6390 sd750g_firmware aqt1000 wcd9375 sm6250_firmware sda429w sd210 wcn3620_firmware qcm6490 sd888_5g_firmware wcn6850_firmware wcn3620 wsa8835_firmware qcx315 qca6564a sa4150p qcm6125_firmware qcm2290_firmware sd_675 sd780g sd865_5g sdx24 qcn9012 sd888 msm8909w_firmware qcx315_firmware wsa8835 sdm429w_firmware sd665_firmware sd888_5g sm6250p qca6574a wcn6855_firmware qca6174a sm7325p wcn6750 sa515m qca6574_firmware sd855 sm7325p_firmware sd665 sd765 qca6574a_firmware sd768g_firmware qrb5165m sm7315 sd460 qca6391 sdxr1_firmware aqt1000_firmware sdx65_firmware qcm4290 csrb31024_firmware qcm6490_firmware sd480_firmware qcn9011 qca6574au sa8155p_firmware sd205_firmware qcm6125 mdm9150 wcn6856 qca6564_firmware sd768g wcn6740 qca6696 sa6150p sm7250p sd720g_firmware sw5100_firmware qcs410_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Feb, 2025 | 16:51

Updated-12 Feb, 2025 | 20:51

Use After Free in WLAN Host Communication

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_7800_firmware ipq6000_firmware qcm6490_firmware qcn6224_firmware ipq8076a csr8811_firmware qca6574au_firmware qcn6132_firmware qam8775p sa8195p qcs615 qca6584au snapdragon_x65_5g_modem-rf_firmware qca9889_firmware qcn5152 sxr2230p ipq6028 qcn5022_firmware qcc710_firmware sxr2230p_firmware sm7635_firmware ipq9574_firmware qca6574 ipq9048 qcn5164_firmware ipq8070a qxm8083 qcm8550 qca6698aq_firmware qcf8000_firmware qcn5024_firmware qca9888 immersive_home_216 qca8075 qcn5122_firmware qcn6412 qcn9100 ipq8173 ipq8071a qcn6402 qcf8001 ipq8174_firmware qcn5164 qca8082_firmware snapdragon_8_gen_3_mobile_firmware qam8255p_firmware wcd9375 ipq9570_firmware sm6650 qca8085 sa6155p video_collaboration_vc3_platform qcn5052 ipq5010_firmware ipq5028 qcn5052_firmware wsa8830_firmware qca8081 qcn9022 immersive_home_316_firmware sdx65m_firmware wcd9385 wsa8840_firmware ipq6028_firmware qfw7124_firmware sxr2250p_firmware wsa8840 qcn6402_firmware ipq8078a_firmware qfw7124 ipq6000 qca6696 immersive_home_3210_firmware qca4024 qca6595 ipq9048_firmware qca8337 sa8155p_firmware ipq8071a_firmware qam8650p qca8337_firmware qcn9012 ipq9570 qcs8300 sxr2330p qcf8000sfp_firmware qcn9012_firmware qcs5430_firmware qcn9070_firmware qcf8000 qam8775p_firmware qcn5154_firmware sm8635p_firmware ipq8074a qcm5430 qcs9100 wcd9378 sm7675_firmware qca8085_firmware sm8750p wsa8835 sm8750p_firmware qcn9024 qca8081_firmware qcn9074 qca6797aq_firmware fastconnect_7800 wcd9340 ipq8174 qcn6112_firmware wcd9378_firmware qca6574au qca8084_firmware qcn9024_firmware sm6650_firmware qca6584au_firmware qca6777aq fastconnect_6700 immersive_home_326 qca6696_firmware snapdragon_x72_5g_modem-rf_firmware qcs9100_firmware wsa8832 fastconnect_6700_firmware ipq5302 wcd9390_firmware qcn6274 qcs615_firmware sm8635 immersive_home_216_firmware ipq5028_firmware qca6554a_firmware ipq5332 qca8082 sm8635_firmware qca6787aq ipq6018_firmware ipq8072a_firmware qcn9000_firmware ipq5300_firmware qca6574a_firmware qcf8000sfp qcn6023 sdx55_firmware qca9888_firmware qca8075_firmware sm8750_firmware qxm8083_firmware ipq5332_firmware ipq6010 ipq8078_firmware qca6554a qca9889 qcn5124 ipq8070a_firmware ipq9554_firmware qcs8300_firmware qcs6490 qcn6432_firmware sxr2330p_firmware wsa8835_firmware qca8386_firmware wcn7860 qcs5430 qca6787aq_firmware qcn9074_firmware wcn7881_firmware qcn9100_firmware qcs8550_firmware sdx65m qcm6490 ipq5312 wcn7881 qcn5154 ipq9554 qcn6274_firmware sm8750 snapdragon_x65_5g_modem-rf qca8084 qcn9274_firmware csr8811 qcn9000 wcn6650 ipq8173_firmware wsa8845_firmware qcn6412_firmware video_collaboration_vc3_platform_firmware qca6574_firmware qcm8550_firmware wcn6755_firmware ar8035 wsa8845h ipq9008_firmware sa6155p_firmware wcn6450_firmware qcn6122_firmware qcn6112 wcn7880_firmware ipq9008 wcd9395_firmware qcn5122 sm7635 fastconnect_6900 ipq9574 qca6574a qcn9160 qcn6432 wcd9375_firmware wcd9385_firmware qam8650p_firmware qcn9274 qcn6422 immersive_home_318_firmware ipq8078a qcn5152_firmware qca6595_firmware sdx55 immersive_home_214 snapdragon_x75_5g_modem-rf_firmware wcd9380 ipq5302_firmware immersive_home_326_firmware sa8155p wcn7861_firmware wsa8832_firmware immersive_home_214_firmware wcn6755 qca6564au immersive_home_318 qca6595au_firmware qcs6490_firmware ipq8072a qcn6224 qca6595au qam8255p ipq5010 ar8035_firmware sa8195p_firmware sm7675 wsa8845h_firmware immersive_home_3210 wsa8845 wcn6650_firmware wcd9380_firmware wcn6450 qcn5124_firmware sm8635p ipq8076 wcd9370 wcd9340_firmware immersive_home_316 qca8386 qca6678aq snapdragon_x75_5g_modem-rf qca6564au_firmware qcn6122 qcn6132 wcn7880 qcn6024 qca6797aq qca4024_firmware sm7675p qcn5022 qcs8550 sxr2250p qcm5430_firmware qcn5024 sm7675p_firmware ipq6010_firmware qcn6422_firmware qcn6024_firmware ipq6018 ipq8078 ipq5300 ipq8076_firmware qcc710 ipq5312_firmware qcf8001_firmware snapdragon_8_gen_3_mobile snapdragon_x72_5g_modem-rf qcn9160_firmware wcn7861 ipq8074a_firmware wsa8830 qcn6023_firmware wcn7860_firmware qca6777aq_firmware qcn9070 qca6678aq_firmware qca6698aq fastconnect_6900_firmware qcn9022_firmware qcn9072_firmware ipq8076a_firmware qfw7114 wcd9390 wcd9395 qfw7114_firmware qcn9072 wcd9370_firmware Snapdragon

CWE ID-CWE-416

Use After Free

Matching Score-10

Assigner-Qualcomm, Inc.

Matching Score-10

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 2.59%

||

7 Day CHG~0.00%

Published-06 May, 2025 | 08:31

Updated-09 May, 2025 | 19:17

Use After Free in HLOS

Memory corruption during concurrent access to server info object due to incorrect reference count update.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_7800_firmware wcd9341 qam8295p qca6696_firmware snapdragon_888\+_5g_mobile sw5100p qca6678aq wcd9385_firmware wcn3988_firmware snapdragon_865\+_5g_mobile qca6426 sa9000p wsa8835_firmware qca6678aq_firmware qam8295p_firmware qcs610 snapdragon_w5\+_gen_1_wearable_firmware qca6698aq_firmware wcn3980 qca6696 sa8540p_firmware c-v2x_9150_firmware snapdragon_888_5g_mobile_firmware qca6174a qcs410 sa6150p_firmware wcn3620_firmware wcd9385 sa8530p qca6391 sa8295p qca6688aq_firmware qca9377 qca6391_firmware qca6174a_firmware snapdragon_x55_5g_modem-rf_system wcn3620 snapdragon_865_5g_mobile_firmware fastconnect_6800_firmware sa6155p_firmware snapdragon_429_mobile sa8195p_firmware sw5100p_firmware snapdragon_xr2_5g qca6574au_firmware wcd9370_firmware sa8155p_firmware fastconnect_6900 sdm429w snapdragon_865\+_5g_mobile_firmware c-v2x_9150 snapdragon_8_gen_1_mobile qca6595au snapdragon_870_5g_mobile_firmware sa8145p_firmware wcn3680b qca6698aq snapdragon_888_5g_mobile sa8150p sxr2130_firmware wcn3660b wsa8810 wcd9380_firmware sd865_5g_firmware snapdragon_w5\+_gen_1_wearable snapdragon_429_mobile_firmware video_collaboration_vc1_platform_firmware wcd9341_firmware wsa8835 snapdragon_888\+_5g_mobile_firmware qcn9074_firmware snapdragon_xr2_5g_firmware wcd9370 sdm429w_firmware wsa8830 sa9000p_firmware qca6574au video_collaboration_vc3_platform sa6145p sa8195p sa6150p snapdragon_8_gen_1_mobile_firmware wsa8815_firmware snapdragon_865_5g_mobile qca6595au_firmware qca9367 wcn3980_firmware wcn3950_firmware sa8530p_firmware sa8540p sa8295p_firmware sd865_5g sw5100_firmware video_collaboration_vc3_platform_firmware sw5100 qca6688aq qca9377_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware snapdragon_x55_5g_modem-rf_system_firmware sxr2130 wsa8810_firmware fastconnect_6800 qca6426_firmware sa8150p_firmware qca9367_firmware snapdragon_870_5g_mobile wcn3950 wcn3988 wcn3680b_firmware wsa8830_firmware wcd9380 wsa8815 qcs610_firmware qca6436_firmware qca6436 sa6155p sa8155p snapdragon_auto_5g_modem-rf_gen_2 sa8145p video_collaboration_vc1_platform fastconnect_6900_firmware sa6145p_firmware qcn9074 wcn3660b_firmware fastconnect_7800 qcs410_firmware Snapdragon

CWE ID-CWE-416

Use After Free