ByteOS

Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Product

Versions

Affected

APQ8009W, AQT1000, MSM8909W, QCA4020, QCA6174A, QCA6420, QCA6430, QCA9379, Qualcomm215, SD 675, SD205, SD210, SD675, SD678, SD720G, SD730, SD855, SDA429W, SDM429W, SDX50M, SDX55, SDX55M, SM6250, WCD9326, WCD9341, WCD9370, WCD9375, WCD9380, WCN3610, WCN3615, WCN3620, WCN3660B, WCN3680, WCN3680B, WCN3950, WCN3980, WCN3988, WCN3991, WCN3998, WSA8810, WSA8815

Problem Types

Type	CWE ID	Description
text	N/A	Buffer Over-read in Boot

Type: text

CWE ID: N/A

Description: Buffer Over-read in Boot

Metrics

Version	Base score	Base severity	Vector
3.1	4.6	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Version: 3.1

Base score: 4.6

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin	x_refsource_CONFIRM

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

Resource:

x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin	x_refsource_CONFIRM x_transferred

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

Resource:

x_refsource_CONFIRM

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:product-security@qualcomm.com

Published At:13 Jul, 2021 | 06:15

Updated At:15 Jul, 2021 | 18:39

Possible buffer over read due to lack of length check while flashing meta images in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	4.6	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Secondary	3.1	4.6	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	2.1	LOW	AV:L/AC:L/Au:N/C:N/I:N/A:P

Type: Primary

Version: 3.1

Base score: 4.6

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 4.6

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 2.1

Base severity: LOW

Vector:

AV:L/AC:L/Au:N/C:N/I:N/A:P

CPE Matches

cpe:2.3:o:qualcomm:apq8009w_firmware:-:*:*:*:*:*:*:*

>>apq8009w_firmware>>-

cpe:2.3:h:qualcomm:apq8009w:-:*:*:*:*:*:*:*

>>apq8009w>>-

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

>>aqt1000_firmware>>-

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

>>aqt1000>>-

cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*

>>msm8909w_firmware>>-

cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*

>>msm8909w>>-

cpe:2.3:o:qualcomm:qca4020_firmware:-:*:*:*:*:*:*:*

>>qca4020_firmware>>-

cpe:2.3:h:qualcomm:qca4020:-:*:*:*:*:*:*:*

>>qca4020>>-

cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*

>>qca6174a_firmware>>-

cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*

>>qca6174a>>-

cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

>>qca6420_firmware>>-

cpe:2.3:h:qualcomm:qca6420:-:*:*:*:*:*:*:*

>>qca6420>>-

cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

>>qca6430_firmware>>-

cpe:2.3:h:qualcomm:qca6430:-:*:*:*:*:*:*:*

>>qca6430>>-

cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*

>>qca9379_firmware>>-

cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*

>>qca9379>>-

cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:*

>>qualcomm215_firmware>>-

cpe:2.3:h:qualcomm:qualcomm215:-:*:*:*:*:*:*:*

>>qualcomm215>>-

cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*

>>sd_675_firmware>>-

cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*

>>sd_675>>-

cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:*

>>sd205_firmware>>-

cpe:2.3:h:qualcomm:sd205:-:*:*:*:*:*:*:*

>>sd205>>-

cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:*

>>sd210_firmware>>-

cpe:2.3:h:qualcomm:sd210:-:*:*:*:*:*:*:*

>>sd210>>-

cpe:2.3:o:qualcomm:sd675_firmware:-:*:*:*:*:*:*:*

>>sd675_firmware>>-

cpe:2.3:h:qualcomm:sd675:-:*:*:*:*:*:*:*

>>sd675>>-

cpe:2.3:o:qualcomm:sd678_firmware:-:*:*:*:*:*:*:*

>>sd678_firmware>>-

cpe:2.3:h:qualcomm:sd678:-:*:*:*:*:*:*:*

>>sd678>>-

cpe:2.3:o:qualcomm:sd720g_firmware:-:*:*:*:*:*:*:*

>>sd720g_firmware>>-

cpe:2.3:h:qualcomm:sd720g:-:*:*:*:*:*:*:*

>>sd720g>>-

cpe:2.3:o:qualcomm:sd730_firmware:-:*:*:*:*:*:*:*

>>sd730_firmware>>-

cpe:2.3:h:qualcomm:sd730:-:*:*:*:*:*:*:*

>>sd730>>-

cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*

>>sd855_firmware>>-

cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

>>sd855>>-

cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:*

>>sda429w_firmware>>-

cpe:2.3:h:qualcomm:sda429w:-:*:*:*:*:*:*:*

>>sda429w>>-

cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*

>>sdm429w_firmware>>-

cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*

>>sdm429w>>-

cpe:2.3:o:qualcomm:sdx50m_firmware:-:*:*:*:*:*:*:*

>>sdx50m_firmware>>-

cpe:2.3:h:qualcomm:sdx50m:-:*:*:*:*:*:*:*

>>sdx50m>>-

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

>>sdx55_firmware>>-

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

>>sdx55>>-

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

>>sdx55m_firmware>>-

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

>>sdx55m>>-

cpe:2.3:o:qualcomm:sm6250_firmware:-:*:*:*:*:*:*:*

>>sm6250_firmware>>-

cpe:2.3:h:qualcomm:sm6250:-:*:*:*:*:*:*:*

>>sm6250>>-

cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

>>wcd9326_firmware>>-

cpe:2.3:h:qualcomm:wcd9326:-:*:*:*:*:*:*:*

>>wcd9326>>-

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

>>wcd9341_firmware>>-

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

>>wcd9341>>-

Weaknesses

CWE ID	Type	Source
CWE-125	Primary	nvd@nist.gov

CWE ID: CWE-125

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin	product-security@qualcomm.com	Patch Vendor Advisory

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

Source: product-security@qualcomm.com

Resource:

Patch

Vendor Advisory

Similar CVEs

437Records found

CVE-2019-2268

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.34% / 55.81%

7 Day CHG~0.00%

Published-21 Nov, 2019 | 14:38

Updated-04 Aug, 2024 | 18:42

Possible OOB read issue in P2P action frames while handling WLAN management frame in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCS405, QCS605, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SM6150

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-33220

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.1||MEDIUM

EPSS-0.02% / 3.09%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:23

Updated-03 Aug, 2024 | 08:01

Buffer over-read in Automotive multimedia

Information disclosure in Automotive multimedia due to buffer over-read.

Product-wsa8830 wcd9380_firmware sa6150p_firmware sa8145p_firmware sw5100p sd865_5g qcc5100 sdx55m_firmware wcn6856_firmware wsa8835 sd_8_gen1_5g wcd9380 sa8150p_firmware sd888_5g qca6420_firmware qca6595au_firmware qca6390_firmware wcn6855_firmware qca6426 qca6430_firmware wcn3980 wcn3998 wcd9385_firmware qam8295p sdxr2_5g_firmware sd_8_gen1_5g_firmware sd855 wsa8815 wcn6850 qam8295p_firmware qca6426_firmware wcn7850 qca6574au_firmware qca6595au wcn3998_firmware wcn3980_firmware qca6391 sdx55m qca6420 qca6436_firmware sa8295p qcc5100_firmware aqt1000_firmware sa6155p_firmware wcn7851 sdxr2_5g wcn6851_firmware wcn3988_firmware qca6430 qca6574au sa6145p_firmware sa8155p_firmware sa8195p wsa8810_firmware wcd9341_firmware sw5100 wsa8810 sd870 qca6436 wcn6851 wcn6855 sa6155p sw5100p_firmware wcn7851_firmware wcn6856 sa6145p wcd9385 wcd9341 qca6696_firmware sa8145p sd870_firmware qca6696 qca6391_firmware qca6390 aqt1000 sa8150p sa6150p sa8155p wsa8830_firmware sd855_firmware sd865_5g_firmware wcn3988 sd888_5g_firmware wcn6850_firmware wcn7850_firmware wsa8815_firmware wsa8835_firmware sa8195p_firmware sw5100_firmware sa8295p_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-2307

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.64% / 69.53%

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:49

Possible integer underflow due to lack of validation before calculation of data length in 802.11 Rx management configuration in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCS405, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 625, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM630, SDM660, SDX20, SDX24

Product-qca9377_firmware sd_850 mdm9150_firmware mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_670_firmware sdx24 mdm9650 sd_636 msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware qca9379_firmware qca6174a sd_665 sdx24_firmware sd_625_firmware sd_450 qca9377 sd_845 mdm9206_firmware qcs605 sd_835_firmware mdm9650_firmware sd_835 qca6574au_firmware sd_210_firmware sd_600 sd_665_firmware sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 qcs405 sd_625 qca6574au sd_820_firmware sd_210 mdm9607 sd_636_firmware mdm9150 qca6174a_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware qcs405_firmware sd_712_firmware sdm630_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_600_firmware sd_205 qca9379 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-191

Integer Underflow (Wrap or Wraparound)

CVE-2019-2301

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 11.82%

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:49

Possibility of out-of-bound read if id received from SPI is not in range of FIFO in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, MSM8909W, MSM8996AU, QCA9980, QCS605, Qualcomm 215, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SD 855, SDM439, SDM660, SDX24

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-2310

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.30% / 52.57%

7 Day CHG~0.00%

Published-12 Dec, 2019 | 08:30

Updated-04 Aug, 2024 | 18:49

Out of bound read would occur while trying to read action category and action ID without validating the action length of the Rx Frame body in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCN7605, QCS605, SDA660, SDA845, SDM450, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SM8150

Product-qca9377_firmware mdm9640_firmware msm8996au_firmware sdm845 sdm450_firmware mdm9650 msm8940_firmware msm8996au apq8009_firmware msm8917 sdm670 qcs605_firmware mdm9206 qca9379_firmware qca6174a sdm670_firmware sdm636 sda845_firmware qca9377 apq8098 qcn7605 mdm9206_firmware qcs605 mdm9640 msm8937_firmware mdm9650_firmware qca6574au_firmware sda660 apq8009 msm8909_firmware apq8053_firmware sda845 msm8920 msm8953 sdm450 sdm636_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 msm8920_firmware sdm630 mdm9607_firmware qca6574au sdm710 mdm9607 apq8017_firmware sdm710_firmware qcn7605_firmware msm8937 mdm9207c_firmware mdm9207c qca6174a_firmware sm8150_firmware msm8909 apq8096au sdm630_firmware sda660_firmware msm8940 apq8053 apq8096au_firmware msm8953_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware apq8017 qca9379 sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-2249

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.48% / 64.27%

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 18:42

Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9205, MDM9650, QCA8081, QCS605, SD 427, SD 435, SD 450, SD 625, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-2337

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.37% / 57.97%

7 Day CHG~0.00%

Published-12 Dec, 2019 | 08:30

Updated-04 Aug, 2024 | 18:49

While Skipping unknown IES, EMM is reading the buffer even if the no of bytes to read are more than message length which may cause device to shutdown in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130

Product-mdm9150_firmware qcm2150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware snapdragon_high_med_2016_firmware sm6150 msm8909w_firmware msm8976_firmware msm8996au sm7150 msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware apq8098 mdm9205 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 sm8250_firmware sdm660 mdm9655_firmware sc8180x_firmware sdm710 qm215 sdm710_firmware mdm9150 msm8937 msm8905 snapdragon_high_med_2016 sm8150_firmware msm8909 sxr2130_firmware mdm9655 apq8096au sdm439_firmware sdm630_firmware mdm9205_firmware sda660_firmware qm215_firmware msm8976 sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-33255

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.08% / 24.34%

7 Day CHG~0.00%

Published-06 Jan, 2023 | 05:02

Updated-09 Apr, 2025 | 15:15

Buffer over-read in Bluetooth HOST

Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.

Product-qca6595au sa6155_firmware sd660_firmware wcd9335 wcn3990_firmware sdm429w_firmware wsa8815_firmware wcn7851_firmware wsa8835_firmware qcs605_firmware wsa8810 sa6145p sd845 sa6155 sa8145p sd205_firmware qcc5100_firmware sd439_firmware qcn9074_firmware sd210_firmware sd626 sd870 wcn6856 qca6335_firmware wcn3680 sd439 wcn6855_firmware wsa8830 sd429 wcn7850_firmware qcn9012 qca6431_firmware sdx55m qcc5100 qcs605 wcd9385 qca6426_firmware wsa8830_firmware sa8155_firmware sdx55m_firmware wcn3660b qcm6125 sd865_5g_firmware wcn3988 wcn3615_firmware wcn6855 msm8608 qcn9012_firmware qca6310 qcn9011 sa8155p qca6431 sd845_firmware wcd9340_firmware qcs410_firmware sw5100p wsa8810_firmware qca6421 sw5100_firmware qcs610 qca6320 wcn6851_firmware qualcomm215 sw5100p_firmware qca6574a_firmware qrb5165n qrb5165m wcn3615 qcs405 sd210 wcn3950 qcn9011_firmware wcd9340 qca6595 wcn3988_firmware qca6595au_firmware wcn6850_firmware sdm429w sa6150p wcd9370 sd870_firmware wcn6850 msm8208_firmware qrb5165_firmware sa8195p qca6320_firmware qcs410 csra6620 qca6391_firmware msm8108_firmware qca6391 sd660 qca6390_firmware wcn7850 ar8031 msm8208 sd625 wcd9341_firmware wcn3680b_firmware wsa8815 qualcomm215_firmware sdxr1 wcn3980_firmware sd625_firmware qca6310_firmware sd205 qca6421_firmware msm8209 sa8150p_firmware sa6150p_firmware wcn3610 qcm6125_firmware wcn3680b sa6145p_firmware qca6574au_firmware ar8031_firmware wcn6851 qca6696_firmware msm8108 wcd9380_firmware csra6640 sd_8_gen1_5g_firmware qca6696 apq8009 qcs610_firmware qcs6125_firmware sd835 wcn3660b_firmware wcd9385_firmware sdxr1_firmware wcn3680_firmware wcn6856_firmware qca6574au wcn3610_firmware wcn3998 sd835_firmware sa6155p_firmware qcs6125 wsa8835 qca6574 qca6574a qcn9074 msm8608_firmware qca6426 wcd9370_firmware sa8155p_firmware apq8009_firmware qca6390 wcd9326_firmware sd865_5g wcd9380 msm8209_firmware sa8145p_firmware qrb5165n_firmware csra6620_firmware sd626_firmware wcd9335_firmware qca6436_firmware qrb5165 sdxr2_5g qrb5165m_firmware wcn3998_firmware wcn7851 sw5100 wcn3620_firmware sa8155 csra6640_firmware sdxr2_5g_firmware wcn3990 sa8195p_firmware sa8150p wcd9326 qca6436 wcn3620 sd429_firmware qca6595_firmware sm8475 qca6335 qca6574_firmware qcs405_firmware sa6155p wcd9341 wcn3950_firmware wcn3980 Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-787

Out-of-bounds Write

CVE-2019-2306

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.30%

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:49

Improper casting of structure while handling the buffer leads to out of bound read in display in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20

Product-sd_850 mdm9150_firmware sd_632 sd_820a sd_675 msm8996au_firmware sd_670_firmware sdm439 mdm9650 sd_636 sd_615_firmware msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware sd_415_firmware msm8909w sd_665_firmware sd_616_firmware sd_205_firmware sd_415 sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_615 sd_710_firmware sdm630 qcs405 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware qualcomm_215_firmware mdm9150 sd_730 sd_212_firmware sd_850_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-704

Incorrect Type Conversion or Cast

CVE-2019-2343

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.04% / 12.73%

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:49

Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130

Product-sd_850 sd_632 sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdm439 sd_636 snapdragon_high_med_2016_firmware msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware sd_425_firmware sd_665 sd_625_firmware sd_450 sd_8cx_firmware sd_845 qcs605 sd_632_firmware sd_835_firmware sd_835 sda660 sxr1130_firmware sd_210_firmware sxr1130 msm8909w sd_665_firmware sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sd_425 sdm660 sd_430_firmware sd_710_firmware sd_435 sdm630 sd_625 sd_210 sd_820_firmware sd_636_firmware sd_439_firmware qualcomm_215_firmware sd_429_firmware sd_730 snapdragon_high_med_2016 sd_212_firmware sd_850_firmware sdm439_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_8cx sd_427 sd_430 sd_670 sd_435_firmware sd_710 sd_205 sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-2283

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.31% / 53.80%

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 18:42

Improper validation of read and write index of tx and rx fifo`s before calculating pointer can lead to out-of-bound access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Product-sd_850 mdm9150_firmware sd_632 mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware msm8909w sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware sdm439_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-27057

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 16.17%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:49

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Host

Transient DOS while handling beacon frames with invalid IE header length.

Product-qcm8550_firmware immersive_home_214 wcn6650 ipq9574 qcn9000_firmware qca6595 sm8735 qcn9022 wcd9335 ipq6028_firmware wcd9370 qca8081_firmware qcn5224 qca6696 qam8620p_firmware wcn7880_firmware wcd9340_firmware sa8530p wcd9341_firmware ipq5028_firmware wcd9395_firmware sxr2330p_firmware qcn6024 wcn7881_firmware wcn7750 wcn6450 qcc2073_firmware qcc710_firmware ipq8076 fastconnect_6700 qcn6422_firmware ipq6018_firmware qcn6023 qcn5124_firmware wsa8832_firmware qca8337 wcd9395 ipq9048 ipq6000 qca6574au_firmware ipq8078a snapdragon_x72_5g_modem-rf ipq8078a_firmware qam8295p wcd9341 ipq5312 wcd9390 qca6574au sa8620p_firmware wsa8845h_firmware sa9000p_firmware srv1h qcn9100_firmware sm8650q_firmware qcn5122 qcs9100 qca6554a qcs5430 wcn7860 qcn6024_firmware qcm5430 qcm5430_firmware sa8770p qcn9000 ssg2115p qca8111 qcc710 qcn6132_firmware sa8540p qca8101 qca6777aq fastconnect_6900 qcn6402 qcn6432 immersive_home_326_firmware ipq5332_firmware sa7255p sm8635 qcn5052 qfw7114 wcd9385_firmware ipq9574_firmware qam8255p_firmware ipq8074a_firmware ipq8076a qcn5164 snapdragon_x65_5g_modem-rf qca6787aq wsa8845 sa6155p qcn9160 qca6564au_firmware csr8811_firmware qca8075 qam8650p video_collaboration_vc5_platform_firmware sa9000p srv1h_firmware qca8085 qca6595au sxr2250p_firmware sa6155p_firmware wsa8840 snapdragon_ar1_gen_1 srv1m_firmware qcs8550_firmware qca6698au snapdragon_8_gen_2_mobile_firmware qfw7124_firmware sm8750p qcn9012 ipq8070a_firmware qcn9070 qcf8001 wcn3910_firmware qca8384 sw-only_firmware qca8084 sm8635p snapdragon_8_gen_2_mobile qca8112 qmp1000 wcn3910 sdx65m wcd9370_firmware qcc2076 qca8102 sa7255p_firmware snapdragon_x72_5g_modem-rf_firmware qca6574a sm7635p_firmware ipq9570 snapdragon_8\+_gen_2_mobile sa8195p wcd9340 qcs8250_firmware qcm2290 snapdragon_auto_5g_modem-rf_gen_2 qcm6490 ipq5302 sa8540p_firmware qcn6122_firmware qcn5154_firmware ipq9048_firmware sxr2250p sm8550p_firmware qcm8550 qcn5122_firmware qcn9274 qcn9024 ipq8076a_firmware qca8384_firmware qca6574 sa8775p ipq9570_firmware sxr2230p_firmware qca6777aq_firmware qca6698au_firmware qcn9011 sa8775p_firmware qamsrv1h qcn6412_firmware wsa8845h qcn9024_firmware qca8082 sm8650q qcm2290_firmware sa8155p_firmware sa8155p wsa8830 ipq5312_firmware sm8550p qcf8000_firmware qcn9074_firmware ipq8174 immersive_home_318_firmware qcn6122 sa8255p_firmware sm7675_firmware qcc2073 ipq8174_firmware ar8035 sm7635_firmware ipq8072a qamsrv1m_firmware wcn7750_firmware sa8650p_firmware immersive_home_216_firmware wcn6450_firmware sm7635p immersive_home_316 qcf8000sfp_firmware srv1l_firmware qcs9100_firmware qcn6224 ipq8071a qcs615 qcn6112 ssg2125p_firmware wcn3950_firmware qxm8083 qca6698aq sa7775p_firmware qca8112_firmware sa8530p_firmware sm7635 wcd9378 sm8635p_firmware sm6650p_firmware fastconnect_6700_firmware video_collaboration_vc3_platform_firmware wcn3990 qcn6023_firmware qcn5164_firmware snapdragon_x75_5g_modem-rf_firmware qca8102_firmware ipq8078 snapdragon_8_gen_3_mobile qcs6490 qcs8250 ipq9554_firmware qcn9072 wsa8830_firmware qcn6224_firmware qca6678aq_firmware qca8386_firmware wsa8845_firmware wsa8832 qca8082_firmware wcd9378_firmware qcc2076_firmware srv1l immersive_home_216 srv1m sm7675p qca6678aq qcn6432_firmware ar8035_firmware qcn5022_firmware wcn7860_firmware sc8380xp qca4024_firmware ipq9008 ipq9554 qca6564au ipq9008_firmware qcn9074 ipq5300_firmware qca8111_firmware sa8195p_firmware qca8337_firmware qca9888 ipq5332 sg8275p_firmware ipq8173 qcm6490_firmware ipq8072a_firmware ipq6010_firmware vision_intelligence_400_firmware wcn3950 qcn6112_firmware qca8385 sm8750 snapdragon_auto_5g_modem-rf_gen_2_firmware qca6797aq_firmware ipq5028 qca8085_firmware qcf8001_firmware qcn9070_firmware sa8295p_firmware sw-only qcn9022_firmware ipq5010_firmware qcn6132 qca8101_firmware ipq6018 qcn9160_firmware qca6584au qcn6274_firmware wcn6755_firmware qcn9011_firmware wcn6650_firmware sc8380xp_firmware ipq5424 snapdragon_8_gen_3_mobile_firmware qcn5224_firmware qfw7114_firmware qca4024 qcs7230 qca6595_firmware fastconnect_7800_firmware qcn6422 immersive_home_214_firmware ipq5302_firmware qxm8083_firmware ipq5300 ipq8070a sm8635_firmware fastconnect_6900_firmware wcd9380 qam8255p sxr2230p qca8080 qmp1000_firmware wcn7880 sxr2330p wcn6755 qca8075_firmware immersive_home_3210 qcf8000 qcn5052_firmware sxr1230p wcn7881 sm6650 ipq6010 sdx65m_firmware video_collaboration_vc3_platform qca8385_firmware sm6650p qca6688aq qam8295p_firmware qcn6402_firmware wcn3990_firmware qca6698aq_firmware qcs2290 wcd9385 qcs2290_firmware qca8084_firmware ipq5424_firmware sa8255p qcs7230_firmware sxr1230p_firmware wcd9390_firmware qcn5024 qcs615_firmware sg8275p sdx55_firmware immersive_home_326 ipq8071a_firmware sm8750_firmware ssg2125p qca6554a_firmware qca8080_firmware ipq6028 snapdragon_x65_5g_modem-rf_firmware qcn9100 qamsrv1m wcn7861_firmware wcn7861 qam8650p_firmware video_collaboration_vc5_platform qcs6490_firmware sm6650_firmware ipq8076_firmware qam8620p wcd9335_firmware qca6584au_firmware qcn5152_firmware qcn6274 qfw7124 wsa8835 wsa8840_firmware qca6391_firmware qca6595au_firmware qcs8300_firmware qca6696_firmware qcs8300 wcd9380_firmware qca6574_firmware qca8081 qcn5124 qam8775p snapdragon_ar2_gen_1_firmware qca6797aq qcn5152 snapdragon_x75_5g_modem-rf qcn6412 sa8620p qca6574a_firmware sdx55 qcn9072_firmware qca9888_firmware ipq8074a immersive_home_3210_firmware qca9889 qcn5024_firmware wcd9375_firmware qca6787aq_firmware qca8386 snapdragon_ar1_gen_1_firmware qca6391 immersive_home_318 ipq5010 qcn9274_firmware sa7775p ipq8173_firmware qcs5430_firmware qcn9012_firmware sa8770p_firmware sa8295p qcs8550 ipq6000_firmware sm8735_firmware fastconnect_7800 sa8650p qam8775p_firmware sm8750p_firmware wcd9375 snapdragon_8\+_gen_2_mobile_firmware ipq8078_firmware qca6688aq_firmware qca9889_firmware snapdragon_ar2_gen_1 immersive_home_316_firmware qamsrv1h_firmware sm7675 qcn5154 vision_intelligence_400 wsa8835_firmware ssg2115p_firmware csr8811 qcn5022 sm7675p_firmware qcf8000sfp Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33080

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 41.56%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Buffer over-read in WLAN Firmware

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33065

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.1||MEDIUM

EPSS-0.03% / 5.94%

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:47

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in Audio

Information disclosure in Audio while accessing AVCS services from ADSP payload.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21438

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 6.52%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:16

Updated-08 Apr, 2025 | 03:56

Out-of-bounds Read in Windows WLAN Host

Memory corruption while IOCTL call is invoked from user-space to read board data.

Product-Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21446

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 21.29%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:48

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33058

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.08% / 24.71%

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:47

Updated-02 Aug, 2024 | 15:32

Buffer Copy Without Checking Size of Input in Modem

Information disclosure in Modem while processing SIB5.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21465

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.01% / 1.63%

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:25

Updated-06 Aug, 2025 | 20:23

Out-of-bounds Read in Core

Information disclosure while processing the hash segment in an MBN file.

Product-Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21459

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 22.22%

7 Day CHG~0.00%

Published-06 May, 2025 | 08:32

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Host Communication

Transient DOS while parsing per STA profile in ML IE.

Product-qca6678aq_firmware qcm8550_firmware wcn6650 wsa8845_firmware wsa8832 wcd9378_firmware qcc2076_firmware qca6595 sm8735 srv1l wcd9335 sm7675p qca6678aq qca8081_firmware srv1m wcd9370 ar8035_firmware qca6696 qam8620p_firmware wcn7880_firmware wcd9340_firmware wcn7860_firmware wcd9341_firmware sxr2330p_firmware wcd9395_firmware wcn7881_firmware wcn7750 wcn6450 qcc2073_firmware qcc710_firmware fastconnect_6700 qca6564au wsa8832_firmware sa8195p_firmware qca8337_firmware qca8337 wcd9395 sg8275p_firmware qcm6490_firmware qca6574au_firmware snapdragon_x72_5g_modem-rf qam8295p wcd9341 qca6574au vision_intelligence_400_firmware wcd9390 sa8620p_firmware wsa8845h_firmware flight_rb5_5g sa9000p_firmware srv1h sm8650q_firmware sm8750 qca6797aq_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware qcs9100 qca6554a qcs5430 sa8295p_firmware wcn7860 qcm5430 qcm5430_firmware sa8770p qca6584au qcn6274_firmware ssg2115p qcn9011_firmware qcc710 wcn6755_firmware wcn6650_firmware qca6777aq snapdragon_8_gen_3_mobile_firmware qfw7114_firmware qca6595_firmware qcs7230 fastconnect_7800_firmware fastconnect_6900 sa7255p sm8635 qfw7114 sm8635_firmware wcd9385_firmware fastconnect_6900_firmware qam8255p_firmware robotics_rb5_firmware wcd9380 qam8255p sxr2230p qmp1000_firmware wcn7880 sxr2330p wcn6755 qca6787aq wsa8845 sa6155p qca6564au_firmware sxr1230p qam8650p video_collaboration_vc5_platform_firmware sa9000p srv1h_firmware sm6650 wcn7881 qca6595au video_collaboration_vc3_platform sxr2250p_firmware sa6155p_firmware sm6650p wsa8840 qca6688aq qam8295p_firmware snapdragon_ar1_gen_1 srv1m_firmware qcs8550_firmware wcn3990_firmware snapdragon_8_gen_2_mobile_firmware qfw7124_firmware qca6698aq_firmware sm8750p wcd9385 qcn9012 sa8255p qcs7230_firmware sm8635p sxr1230p_firmware wcd9390_firmware qmp1000 snapdragon_8_gen_2_mobile qcs615_firmware sg8275p wcd9370_firmware sm8750_firmware qcc2076 flight_rb5_5g_firmware ssg2125p qca6554a_firmware sa7255p_firmware qca6574a snapdragon_8\+_gen_2_mobile snapdragon_x72_5g_modem-rf_firmware sa8195p wcd9340 qcs8250_firmware qamsrv1m robotics_rb5 snapdragon_auto_5g_modem-rf_gen_2 wcn7861_firmware qcm6490 wcn7861 qam8650p_firmware video_collaboration_vc5_platform sm8550p_firmware sxr2250p qcm8550 qcs6490_firmware qcn9274 sm6650_firmware qam8620p qca6584au_firmware qcn6274 qca6574 qfw7124 qrb5165n_firmware sa8775p qca6595au_firmware qca6391_firmware sxr2230p_firmware qca6777aq_firmware wsa8835 wsa8840_firmware qcs8300_firmware qcn9011 sa8775p_firmware qamsrv1h qca6696_firmware wsa8845h qcs8300 wcd9380_firmware qca6574_firmware sm8650q sa8155p_firmware qca8081 sa8155p wcd9335_firmware wsa8830 qam8775p qca6797aq snapdragon_ar2_gen_1_firmware sm8550p snapdragon_x75_5g_modem-rf sa8620p sm7675_firmware sa8255p_firmware qcc2073 ar8035 qca6574a_firmware qamsrv1m_firmware sm7635_firmware wcn7750_firmware sa8650p_firmware wcn6450_firmware qca6787aq_firmware wcd9375_firmware sa7775p qca6391 snapdragon_ar1_gen_1_firmware srv1l_firmware qcn6224 qcs9100_firmware qcn9274_firmware qcs615 qcn9012_firmware qcs5430_firmware qca6698aq sa7775p_firmware sm7635 ssg2125p_firmware qrb5165n sa8295p sa8770p_firmware qcs8550 sm8735_firmware fastconnect_7800 sa8650p qam8775p_firmware wcd9378 sm8635p_firmware qca6688aq_firmware sm6650p_firmware sm8750p_firmware snapdragon_8\+_gen_2_mobile_firmware wcd9375 snapdragon_ar2_gen_1 fastconnect_6700_firmware qamsrv1h_firmware sm7675 video_collaboration_vc3_platform_firmware wcn3990 snapdragon_x75_5g_modem-rf_firmware vision_intelligence_400 ssg2115p_firmware wsa8835_firmware qcs6490 qcs8250 sm7675p_firmware snapdragon_8_gen_3_mobile wsa8830_firmware qcn6224_firmware Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33016

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.09% / 26.67%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN firmware while parsing MLO (multi-link operation).

Product-qcn5024_firmware wsa8830 qcn9070 sxr2230p_firmware immersive_home_318_firmware ipq8173_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 snapdragon_8_gen_1 ipq8078a ipq5028_firmware ipq6000 immersive_home_216 ssg2115p qcn5152_firmware qcn9000_firmware wcd9385_firmware ipq8076a qca8386_firmware qcn6024_firmware sd_8_gen1_5g_firmware qca8084_firmware ipq8074a qcn5124_firmware qca8082_firmware qcn5164_firmware qcn5122_firmware qca8081_firmware qcn6023_firmware ipq5010 immersive_home_214 ipq8078a_firmware qcn9274 ipq8174 ipq5028 qcn5052 ipq6010 qcs8550_firmware qcn9074 qca8085 qcn6132 qca8081 ipq8071a qcn6023 ipq8071a_firmware wcd9385 qca8085_firmware qca9888_firmware qcn6122 immersive_home_316_firmware qcn5154_firmware csr8811 qcn9100_firmware wsa8830_firmware ipq5010_firmware ipq8074a_firmware wsa8835_firmware qcn5022_firmware immersive_home_216_firmware wcd9380_firmware ssg2125p qcn9000 ipq8072a immersive_home_214_firmware ipq8076a_firmware ipq8078 qca8084 ipq8173 snapdragon_8_gen_1_firmware qcn5164 snapdragon_ar2_gen_1 qcn6122_firmware wsa8835 sxr1230p_firmware csr8811_firmware sd_8_gen1_5g wcd9380 qcn5154 qca8075_firmware ssg2125p_firmware qcn5024 qca9889 qcn6132_firmware sxr1230p qca9888 qcn5052_firmware qcn9274_firmware ipq8070a_firmware ipq6018_firmware ipq8076_firmware sxr2230p ipq8076 qcn5152 ipq6028 qcn9024 ipq9574_firmware fastconnect_7800 qcn9100 snapdragon_ar2_gen_1_firmware ipq8078_firmware wsa8832_firmware fastconnect_6900 qcn9070_firmware fastconnect_6900_firmware immersive_home_318 ipq6028_firmware ipq8072a_firmware immersive_home_316 qca9889_firmware ipq9574 qcn5122 qcn9024_firmware ipq8174_firmware fastconnect_7800_firmware wsa8832 ipq6018 qcn5022 ipq6010_firmware qcs8550 qca4024 qca8075 qcn9022_firmware qcn6024 qcn9022 ipq8070a qcn9072_firmware ipq6000_firmware ssg2115p_firmware qcn9074_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21427

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.05% / 13.72%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:48

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in Data HLOS - LNX

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33061

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21464

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.01% / 1.63%

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:25

Updated-06 Aug, 2025 | 20:23

Out-of-bounds Read in Core

Information disclosure while reading data from an image using specified offset and size parameters.

Product-Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21449

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 16.17%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:48

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Embedded SW

Transient DOS may occur while processing malformed length field in SSID IEs.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21475

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 2.59%

7 Day CHG~0.00%

Published-06 May, 2025 | 08:32

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in Display

Memory corruption while processing escape code, when DisplayId is passed with large unsigned value.

Product-wsa8845_firmware wsa8840 wcd9370 snapdragon_7c_gen_2_compute_firmware sc8180xp-aaab_firmware wcd9340_firmware wcd9385 sc8380xp wcd9341_firmware snapdragon_7c\+_gen_3_compute_firmware fastconnect_6700 qca6420 sc8180xp-ad sc8280xp-abbb qca6430 wsa8815_firmware wcd9370_firmware sc8180xp-ad_firmware qcm6490_firmware sc8180xp-aaab wcd9340 wcd9341 qcm6490 wsa8810_firmware wsa8845h_firmware qca6420_firmware aqt1000_firmware qcs6490_firmware sc8180xp-acaf snapdragon_7c\+_gen_3_compute wsa8835 wsa8840_firmware qca6391_firmware qca6430_firmware fastconnect_6800_firmware qcs5430 wsa8845h wcd9380_firmware qcm5430 sm6250_firmware sc8180x-ad_firmware qcm5430_firmware sc8180x-acaf wsa8815 snapdragon_7c_compute wsa8830 snapdragon_7c_gen_2_compute sc8180x\+sdx55_firmware snapdragon_7c_compute_firmware sc8380xp_firmware fastconnect_6800 wcd9375_firmware fastconnect_7800_firmware fastconnect_6900 qca6391 qcs5430_firmware sc8180x\+sdx55 wcd9385_firmware sm6250 fastconnect_6900_firmware wcd9380 fastconnect_6200 sc8280xp-abbb_firmware fastconnect_7800 sc8180x-acaf_firmware wcd9375 wsa8845 fastconnect_6700_firmware video_collaboration_vc3_platform_firmware sc8180x-ad wsa8835_firmware sc8180x-aaab wsa8810 sc8180x-aaab_firmware qcs6490 sc8180xp-acaf_firmware fastconnect_6200_firmware wsa8830_firmware video_collaboration_vc3_platform aqt1000 Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33098

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33090

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.06% / 19.08%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-10 Jan, 2025 | 17:48

Buffer Over-read in Audio

Transient DOS while processing channel information for speaker protection v2 module in ADSP.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21454

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 16.17%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:49

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Embedded SW

Transient DOS while processing received beacon frame.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33064

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.02% / 4.69%

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:47

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in Audio

Transient DOS in Audio when invoking callback function of ASM driver.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33060

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.03% / 7.06%

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:47

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in Core

Transient DOS in Core when DDR memory check is called while DDR is not initialized.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33115

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.06% / 18.96%

7 Day CHG~0.00%

Published-01 Apr, 2024 | 15:05

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in Trusted Execution Environment

Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33048

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 41.56%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-02 Aug, 2024 | 15:32

Buffer over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing t2lm buffers.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33097

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.70%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while processing a FTMR frame.

Product-qcn5024_firmware qam8255p_firmware snapdragon_8_gen_1_mobile_platform wsa8830 qcn9070 sxr2230p_firmware qca8337 qam8650p qfw7124 sg8275p_firmware ipq8173_firmware qam8775p qcf8001 qcn6224_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 wsa8840 immersive_home_318_platform_firmware ipq8078a ipq5028_firmware qca6595au_firmware ipq6000 ssg2115p qcn5152_firmware qca0000_firmware qca6584au_firmware qcn9000_firmware snapdragon_8_gen_2_mobile_platform ipq9554 qca6554a_firmware wcd9385_firmware immersive_home_216_platform ipq8076a immersive_home_316_platform immersive_home_316_platform_firmware qca8386_firmware qcn6024_firmware sd_8_gen1_5g_firmware qca8084_firmware immersive_home_318_platform ipq8074a qcn5124_firmware qca8082_firmware qca6574au_firmware qcn5122_firmware qcn5164_firmware sdx55_firmware qca6595au qca8081_firmware qcn6023_firmware qfw7114 wsa8845h_firmware qcn9002 ipq5010 qca6564au_firmware qca6584au snapdragon_x65_5g_modem-rf_system_firmware qcm8550_firmware ipq8078a_firmware qcn9274 ipq8174 qcn9001 ipq5028 wsa8840_firmware qca6698aq qcn5052 qca0000 qcf8001_firmware ipq6010 qcs8550_firmware sc8380xp_firmware qcn6112_firmware qcn9074 qca8085 sdx65m wcd9340 qcn6132 qcn6224 qcn9013 wsa8845h snapdragon_ar2_gen_1_platform_firmware snapdragon_x75_5g_modem-rf_system wcd9395_firmware qca8081 qcf8000 qca6698aq_firmware ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware immersive_home_3210_platform qca8085_firmware qam8775p_firmware qca9888_firmware qcn6122 wcd9385 qca6696_firmware ipq9008_firmware ipq9570 qcn5154_firmware qca6797aq ar8035 csr8811 wcd9390 qcc710_firmware qcn9100_firmware wsa8830_firmware ipq5010_firmware ipq8074a_firmware wsa8835_firmware qcn5022_firmware immersive_home_216_platform_firmware snapdragon_8_gen_2_mobile_platform_firmware qca8072 qca8337_firmware wcd9380_firmware ssg2125p qcn9000 ipq8072a qcf8000_firmware qca6554a ipq8076a_firmware qca6595 ipq8078 qca6564au qca8084 ipq8173 qcm8550 qcn9001_firmware ipq9008 qcn9012 qcn5164 immersive_home_326_platform_firmware qcn6122_firmware qca6574 sxr1230p_firmware wsa8835 snapdragon_8\+_gen_2_mobile_platform_firmware csr8811_firmware sd_8_gen1_5g qcn6274 wcd9380 ipq9554_firmware qcn5054_firmware qcn5154 qca8075_firmware ssg2125p_firmware qca6574a qcn5024 qca9889 qcn6132_firmware qcn9003_firmware sxr1230p qca9888 qca8072_firmware sg8275p qcn9012_firmware qcn5052_firmware qcn9274_firmware qcc2076_firmware ipq8070a_firmware qcn9003 qfw7114_firmware wsa8845 qcc2073_firmware ipq6018_firmware ipq8076_firmware qca6574_firmware wcd9340_firmware qcn6112 sxr2230p ipq8076 wsa8845_firmware qca6574a_firmware qcn5152 ipq6028 sc8380xp qcn9024 ipq9574_firmware immersive_home_3210_platform_firmware fastconnect_7800 qcn9100 qcn6274_firmware snapdragon_x65_5g_modem-rf_system ipq8078_firmware ipq9570_firmware fastconnect_6900 qcn5054 qcn9070_firmware fastconnect_6900_firmware snapdragon_x75_5g_modem-rf_system_firmware wsa8832_firmware ipq6028_firmware ipq8072a_firmware qca6797aq_firmware qca6574au qca9889_firmware ipq9574 qcn5122 qcn9024_firmware ipq8174_firmware fastconnect_7800_firmware snapdragon_8\+_gen_2_mobile_platform wsa8832 ipq5332_firmware ipq5332 sm8550p snapdragon_8_gen_1_mobile_platform_firmware immersive_home_326_platform snapdragon_ar2_gen_1_platform ipq6018 qcn5022 qcn9013_firmware qam8650p_firmware qcc710 ipq6010_firmware immersive_home_214_platform qca6595_firmware wcd9395 qca6696 qcs8550 immersive_home_214_platform_firmware qca4024 sm8550p_firmware sdx55 qca8075 qcn9022_firmware wcd9390_firmware qcn6024 qcn9022 qcc2076 ipq8070a qcn9002_firmware qcn9072_firmware ipq6000_firmware ssg2115p_firmware qcn9074_firmware qfw7124_firmware qam8255p qcc2073 ar8035_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33047

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing no-inherit IES.

Product-qcm8550_firmware sd865_5g ipq9574 qcn9000_firmware qcn6102_firmware qca6595 qcn9022 ipq6028_firmware immersive_home_214_platform qca8081_firmware wcd9370 qcn9001 qca8072 qca6696 wcd9340_firmware ipq5028_firmware wcd9395_firmware qcn6024 qcn9003_firmware qca6390 ar9380 qcc2073_firmware qcc710_firmware ipq8076 qca6426 wcn6740_firmware ipq6018_firmware qca9984_firmware qcn6023 qcn5124_firmware wsa8832_firmware immersive_home_216_platform qca8337 qca9994_firmware qca6426_firmware wcd9395 ipq6000 qca6574au_firmware ipq8078a ipq8078a_firmware wcn785x-5 qam8295p qca6574au wcd9390 wsa8810_firmware wsa8845h_firmware qcn9100_firmware qca2064_firmware qcn5122 qca6554a qcn6024_firmware qca9886_firmware sm8350 qcn9000 ssg2115p qcc710 qcn6132_firmware qca2062_firmware qsm8350_firmware qcn5054 sm8450_firmware ipq5332_firmware qcn5052 qca9980 qfw7114 wcd9385_firmware snapdragon_x55_5g_modem-rf_system ipq9574_firmware qam8255p_firmware ipq8064 ipq8074a_firmware ipq8076a qcn5164 snapdragon_ar2_gen_1_platform_firmware qcs4490 immersive_home_3210_platform_firmware snapdragon_8\+_gen_2_mobile_platform_firmware wsa8845 qcn6100_firmware qca6564au_firmware csr8811_firmware wsa8810 qca8075 qam8650p qca8085 snapdragon_8\+_gen_2_mobile_platform sm8350-ac qcn6100 qca6595au wsa8840 qcs8550_firmware qca6390_firmware qca9986_firmware qfw7124_firmware qca6436_firmware qcn9012 ipq8070a_firmware qcn9070 qcs4490_firmware snapdragon_8_gen_2_mobile_platform qcf8001 qca8084 sm8250-ac_firmware sdx65m wcd9370_firmware snapdragon_x55_5g_modem-rf_system_firmware qcc2076 qca6574a ipq9570 wcd9340 qcm6490 immersive_home_316_platform_firmware qcn6122_firmware qcn5154_firmware sm8550p_firmware immersive_home_3210_platform qcm8550 qcn5122_firmware qcn9274 qcn9024 ipq8076a_firmware qca6574 snapdragon_x75_5g_modem-rf_system ipq9570_firmware sxr2230p_firmware ar9380_firmware qca2066_firmware qcn9024_firmware wsa8845h qca8082 qca8072_firmware wsa8830 sm8550p qcf8000_firmware qcn9074_firmware ipq8174 qcn6122 sa8255p_firmware ipq8174_firmware wcn785x-1_firmware qcc2073 ar8035 ipq8072a qca2065 qca9985 qcn6224 ipq8071a sc8280xp-ab sm8475_firmware qcn6112 qca6698aq wcn3950_firmware ssg2125p_firmware wcn685x-1 video_collaboration_vc3_platform_firmware qcn6023_firmware qcn5164_firmware qcn9002 ipq8078 immersive_home_326_platform_firmware qcs6490 ipq9554_firmware sc8280xp-bb_firmware qcn9072 wsa8830_firmware qcn6224_firmware qca6678aq_firmware qca8386_firmware wsa8845_firmware wsa8832 qca8082_firmware qcc2076_firmware sxr2130_firmware qca6678aq ar8035_firmware qcn5022_firmware sm8475 qca9992 sc8380xp sm8250-ab_firmware qca4024_firmware qca0000_firmware sd888_firmware ipq9008 ipq9554 qca6564au qca9992_firmware qca9990 ipq9008_firmware qcn9074 immersive_home_214_platform_firmware wsa8815_firmware sm8250-ab qca8337_firmware qcn5054_firmware qca9888 ipq5332 qcn9013 sg8275p_firmware ipq8173 qcm6490_firmware ipq8072a_firmware sm8350-ac_firmware ipq6010_firmware qcm4490_firmware wcn785x-5_firmware wcn3950 snapdragon_xr2_5g_platform qcn6112_firmware snapdragon_x65_5g_modem-rf_system_firmware qca6797aq_firmware sm7350-ab_firmware ipq5028 qca9986 qcf8001_firmware qcn9070_firmware qca8085_firmware sa8295p_firmware qca9984 ipq5010_firmware qcn9022_firmware qca9886 qcn6132 ipq6018 qcn6102 qca6584au sd888 qcn6274_firmware wcn685x-5 wcn6740 sc8380xp_firmware ipq8065 qfw7114_firmware qca4024 sc8280xp-ab_firmware qca6595_firmware sm8250-ac sm8250_firmware qcn9001_firmware immersive_home_216_platform_firmware ipq8070a wcd9380 qam8255p sxr2230p qca9990_firmware snapdragon_xr2_5g_platform_firmware qcn9003 qca8075_firmware qcf8000 qcn5052_firmware sm7350-ab snapdragon_auto_5g_modem-rf_firmware qca2064 sm8350_firmware sxr1230p qca2065_firmware ipq6010 sdx65m_firmware video_collaboration_vc3_platform qca9980_firmware qca9985_firmware qam8295p_firmware qca6698aq_firmware wcd9385 qca9994 qsm8350 sc8280xp-bb qca8084_firmware sa8255p sxr1230p_firmware wcd9390_firmware immersive_home_318_platform_firmware wcn6750 qcn5024 sg8275p wcn6750_firmware sdx55_firmware ipq8071a_firmware snapdragon_auto_5g_modem-rf ssg2125p qca6554a_firmware sxr2130 ipq6028 qcm4490 qcn9100 immersive_home_326_platform qam8650p_firmware qcn9013_firmware qca2062 qcs6490_firmware sm8450 snapdragon_x65_5g_modem-rf_system ipq8076_firmware qca6584au_firmware qcn5152_firmware qcn6274 qca6436 qfw7124 wsa8835 wsa8840_firmware qca6391_firmware qca6595au_firmware qca0000 sm8250 snapdragon_ar2_gen_1_platform ipq8068 qca6696_firmware wcd9380_firmware qca6574_firmware qca8081 wsa8815 sd_8_gen1_5g qcn5124 qam8775p ipq8064_firmware qca6797aq qcn5152 ipq8065_firmware qca6574a_firmware sdx55 qcn9072_firmware qca9888_firmware ipq8074a immersive_home_318_platform qca9889 qcn5024_firmware sd_8_gen1_5g_firmware qcn9002_firmware wcd9375_firmware qca8386 qca6391 ipq5010 qcn9274_firmware wcn785x-1 ipq8173_firmware qcn9012_firmware snapdragon_8_gen_2_mobile_platform_firmware sa8295p qcs8550 ipq8068_firmware ipq6000_firmware qam8775p_firmware sd865_5g_firmware wcd9375 ipq8078_firmware wcn685x-5_firmware qca9889_firmware qcn5154 immersive_home_316_platform wsa8835_firmware qca2066 ssg2115p_firmware csr8811 qcn5022 snapdragon_x75_5g_modem-rf_system_firmware wcn685x-1_firmware Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33116

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.32% / 54.62%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-17 Jun, 2025 | 19:55

Buffer over-read without Checking Size of Input in WLAN Host

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

Product-qcn5024_firmware qcn9070 ipq4028_firmware qca8337 qfw7124 ar9380 ipq8173_firmware qcf8001 flight_rb5_5g_platform flight_rb5_5g_platform_firmware qcn6224_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 qca9880_firmware qca9992 immersive_home_318_platform_firmware ipq8078a ipq5028_firmware ipq6000 qcn5152_firmware qca0000_firmware qrb5165n_firmware qcn9000_firmware qca9984_firmware wcd9385_firmware immersive_home_216_platform ipq8076a immersive_home_316_platform immersive_home_316_platform_firmware qca8386_firmware qcn6024_firmware qca8084_firmware immersive_home_318_platform ipq8074a qcn5124_firmware qcn9011_firmware qca8082_firmware qcn5164_firmware qcn5122_firmware sdx55_firmware qca8081_firmware qcn6023_firmware qfw7114 qrb5165n ipq5010 ipq8070_firmware snapdragon_x65_5g_modem-rf_system_firmware ipq8065 ipq8078a_firmware qcn9274 ipq8174 qca9990 qrb5165m_firmware ipq5028 qca7500 ipq4029_firmware qcn5052 qca0000 qcf8001_firmware ipq6010 ipq8068 qcn6112_firmware qcn9074 qca8085 sdx65m wcd9340 qcn6132 qcn6224 qcn9013 snapdragon_x75_5g_modem-rf_system qca8081 ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware immersive_home_3210_platform qca8085_firmware qca9888_firmware ipq8068_firmware qcn6122 wcd9385 ipq9008_firmware ipq9570 qcn5154_firmware ar8035 csr8811 qca9898_firmware ipq4019 qcc710_firmware qcn9100_firmware robotics_rb5_platform qca9992_firmware ipq5010_firmware ipq8074a_firmware qca9898 qcn5022_firmware ipq4028 immersive_home_216_platform_firmware qca9985_firmware robotics_rb5_platform_firmware ipq4018_firmware qca8337_firmware wcd9380_firmware qcn9000 ipq8072a qca7500_firmware qca9980_firmware ipq8076a_firmware ar9380_firmware ipq8078 qca8084 ipq8173 ipq9008 qcn9012 qcn5164 immersive_home_326_platform_firmware qcn6122_firmware ipq8065_firmware csr8811_firmware qcn6274 wcd9380 qcn5154 qca8075_firmware ipq4018 ipq4019_firmware qcn5024 qca9889 qcn6132_firmware qca9888 qca9985 qca9994_firmware qcn5052_firmware qcn9012_firmware qcn9274_firmware ipq8070a_firmware qfw7114_firmware wcn3980 ipq6018_firmware ipq8076_firmware qca9886 wcd9340_firmware qcn6112 ipq8076 qca9984 ipq6028 ipq8064 qcn5152 qcn9024 qrb5165m ipq9574_firmware wcn3980_firmware immersive_home_3210_platform_firmware qca6391 ipq8064_firmware fastconnect_7800 qcn9100 qcn6274_firmware snapdragon_x65_5g_modem-rf_system ipq8078_firmware ipq9570_firmware fastconnect_6900 qcn9070_firmware snapdragon_x75_5g_modem-rf_system_firmware fastconnect_6900_firmware ipq8070 ipq6028_firmware ipq8072a_firmware qcn9011 qca9994 qca9889_firmware ipq9574 qca9980 qcn5122 ipq8174_firmware qcn9024_firmware qca9880 fastconnect_7800_firmware immersive_home_326_platform ipq6018 qcn5022 qcn9013_firmware qca9886_firmware qcc710 ipq6010_firmware immersive_home_214_platform qca6391_firmware immersive_home_214_platform_firmware qca4024 sdx55 qca8075 qcn9022_firmware qcn6024 qcn9022 qca9990_firmware ipq8070a qcn9072_firmware ipq6000_firmware qcn9074_firmware qfw7124_firmware ipq4029 ar8035_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33015

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 22.22%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33081

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.70%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-02 Aug, 2024 | 15:32

Buffer over-read in WLAN Firmware

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

Product-qam8255p_firmware sc8180x-ab_firmware qca8337 qfw7124 ipq8173_firmware qca6431_firmware qam8775p qcf8001 qcn5124 qca4024_firmware wsa8840 immersive_home_318_platform_firmware sc8180x\+sdx55 ipq8078a ipq5028_firmware qca6595au_firmware wcn685x-1 wcn3998 qca6554a_firmware sc8180xp-ad ipq8076a qca8386_firmware qcn6024_firmware immersive_home_316_platform_firmware qca8084_firmware qca6574au_firmware qcn5164_firmware wcn3998_firmware qca8081_firmware qca6420 sc8180xp-af ipq8078a_firmware ipq5028 wsa8840_firmware qca6698aq sc8180xp-aa_firmware qca0000 qcf8001_firmware ipq6010 sc8380xp_firmware qca6430 sdx65m wcd9340 qcn6132 qcn9013 qca6436 qcf8000 qca6698aq_firmware wcn685x-1_firmware qca9888_firmware qam8775p_firmware qcn6122 wcd9341 qca6431 qca6696_firmware sc8180xp-ab_firmware ipq9008_firmware qca1062 sc8180x-ab qcn5154_firmware qca6797aq qcc710_firmware sm8250-ac_firmware wsa8830_firmware sd865_5g_firmware qcn5022_firmware immersive_home_216_platform_firmware wcn3991 qca8337_firmware wcd9380_firmware ssg2125p ipq8072a ipq8076a_firmware ipq8078 qca6564au qca8084 ipq8173 qcm8550 ipq9008 qcn5164 qca6574 csr8811_firmware sc8180xp-aa wcd9380 ipq9554_firmware qcn5024 sxr1230p sc8180xp-ad_firmware sc8180x-ac_firmware qca6430_firmware qcn5052_firmware qcn9012_firmware qcn9274_firmware qfw7114_firmware wsa8845 qcc2073_firmware ipq6018_firmware wcd9340_firmware wsa8815 qcn6112 qca6426_firmware sc8380xp ipq6028 sc8180x-ad qcn9024 ipq9574_firmware immersive_home_3210_platform_firmware qca6421_firmware snapdragon_xr2_5g_platform snapdragon_x65_5g_modem-rf_system ipq8078_firmware snapdragon_x75_5g_modem-rf_system_firmware qca6797aq_firmware wcn785x-1_firmware qcn9024_firmware ipq8174_firmware snapdragon_8\+_gen_2_mobile_platform wsa8832 sc8180xp-ac_firmware ipq5332 immersive_home_326_platform ipq6018 qcc710 immersive_home_214_platform qca6595_firmware wcd9395 qca6391_firmware immersive_home_214_platform_firmware qca4024 sm8550p_firmware sdx55 sm8250 ssg2115p_firmware qfw7124_firmware qam8255p ar8035_firmware qcn5024_firmware wcn3991_firmware wsa8830 qcn9070 sxr2230p_firmware qca1062_firmware qam8650p wcn785x-5 qcn6224_firmware qca8082 qcn9072 qca8386 qca6420_firmware qca6390_firmware ipq6000 ssg2115p qcn5152_firmware qca0000_firmware qca6426 qca6584au_firmware qcn9000_firmware snapdragon_8_gen_2_mobile_platform sm8250-ab ipq9554 wcd9385_firmware immersive_home_216_platform immersive_home_316_platform immersive_home_318_platform ipq8074a qcn5124_firmware qca1064 qca8082_firmware snapdragon_x55_5g_modem-rf_system qcn5122_firmware sdx55_firmware qca6595au qcn6023_firmware wsa8845h_firmware qfw7114 qca6436_firmware ipq5010 qca6564au_firmware qca6584au snapdragon_x65_5g_modem-rf_system_firmware qcm8550_firmware qcn9274 ipq8174 qcn5052 sm8250_firmware qcn6112_firmware sm8250-ac qcn9074 qca6421 qca8085 wsa8810_firmware qcn6224 wsa8845h snapdragon_ar2_gen_1_platform_firmware snapdragon_x75_5g_modem-rf_system wcd9395_firmware qca8081 ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware wcd9385 immersive_home_3210_platform qca8085_firmware sxr2130_firmware ipq9570 sc8180x-ac qca6390 ar8035 csr8811 aqt1000 sc8180x\+sdx55_firmware wcd9390 qcn9100_firmware ipq5010_firmware ipq8074a_firmware wsa8815_firmware wsa8835_firmware snapdragon_8_gen_2_mobile_platform_firmware wcn785x-1 qcn9000 qcf8000_firmware qca6554a sd865_5g qca6595 qcn9012 immersive_home_326_platform_firmware qcn6122_firmware wsa8835 sxr1230p_firmware snapdragon_8\+_gen_2_mobile_platform_firmware qcn6274 qcn5154 qca8075_firmware sc8180xp-ac qca6574a ssg2125p_firmware sxr2130 wcn685x-5_firmware qca9889 sc8180x-af qcn6132_firmware qca9888 qcc2076_firmware ipq8070a_firmware ipq8076_firmware qca6574_firmware sxr2230p ipq8076 wsa8845_firmware snapdragon_xr2_5g_platform_firmware qca6574a_firmware qcn5152 wcn785x-5_firmware snapdragon_x55_5g_modem-rf_system_firmware sm8250-ab_firmware qca6391 aqt1000_firmware qcn9100 qcn6274_firmware wsa8832_firmware ipq9570_firmware qcn9070_firmware wcn685x-5 ipq6028_firmware ipq8072a_firmware sc8180xp-af_firmware qca6574au qca9889_firmware ipq9574 qcn5122 wcd9341_firmware wsa8810 sc8180x-aa_firmware ipq5332_firmware sm8550p snapdragon_ar2_gen_1_platform qcn5022 qcn9013_firmware sc8180x-aa qam8650p_firmware ipq6010_firmware sc8180x-af_firmware qca1064_firmware qca6696 sc8180xp-ab qca8075 qcn9022_firmware wcd9390_firmware qcn6024 qcn9022 qcc2076 ipq8070a sc8180x-ad_firmware qcn9072_firmware ipq6000_firmware qcn9074_firmware qcc2073 Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33078

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.1||MEDIUM

EPSS-0.03% / 6.82%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-10 Jan, 2025 | 17:47

Buffer Over-read in DSP Services

Information Disclosure while processing IOCTL request in FastRPC.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14048

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-05 Mar, 2020 | 08:56

Updated-05 Aug, 2024 | 00:05

Possible out of bound memory access while playing a crafted clip in media player in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in SM8150

Product-sm8150 sm8150_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14039

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-05 Aug, 2024 | 00:05

Out of bound read in adm call back function due to incorrect boundary check for payload in command response in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8953, QCS605, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM670, SDM710, SDM845, SDX20, SDX24

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14038

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-05 Aug, 2024 | 00:05

Buffer over-read in ADSP parse function due to lack of check for availability of sufficient data payload received in command response in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8953, QCS605, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM670, SDM710, SDM845, SDX20, SDX24

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2019-14042

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-05 Aug, 2024 | 00:05

Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14081

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.03% / 7.74%

7 Day CHG~0.00%

Published-05 Mar, 2020 | 08:56

Updated-05 Aug, 2024 | 00:12

Buffer Over-read when WLAN module gets a WMI message for SAR limits with invalid number of limits to be enforced in Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ8074, MSM8998, QCA8081, QCN7605, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14104

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.03% / 7.74%

7 Day CHG~0.00%

Published-16 Apr, 2020 | 10:46

Updated-05 Aug, 2024 | 00:12

Slab-out-of-bounds access can occur if the context pointer is invalid due to lack of null check on pointer before accessing it in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile in APQ8053, SC8180X, SDX55, SM8150

Product-apq8053 sdx55 sm8150_firmware sm8150 sdx55_firmware apq8053_firmware sc8180x sc8180x_firmware Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14053

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-05 Aug, 2024 | 00:05

When attempting to create a new XFRM policy, a stack out-of-bounds read will occur if the user provides a template where the mode is set to a value that does not resolve to a valid XFRM mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8953, MSM8996AU, QCA4531, QCN7605, QCS605, QM215, SA415M, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Product-qca4531_firmware mdm9640_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sxr2130 qcs605_firmware sc8180x ipq4019_firmware mdm9206 sdx24_firmware ipq8074 sdm636 sda845_firmware sa415m qca4531 apq8098 qcn7605 mdm9206_firmware qcs605 sdm429_firmware mdm9650_firmware msm8905_firmware sda660 sdx55_firmware msm8909w apq8009 apq8053_firmware sda845 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 sdm660 sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware sa415m_firmware ipq8074_firmware qm215 mdm9607 qcn7605_firmware mdm9207c_firmware msm8905 mdm9207c sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware sdm630_firmware sda660_firmware qm215_firmware ipq4019 sdx55 msm8953_firmware apq8053 sm6150_firmware apq8096au_firmware sm8250 msm8917_firmware sm8150 sdx20_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14101

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-05 Aug, 2024 | 00:12

Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Product-mdm9150_firmware kamorta_firmware mdm9635m_firmware mdm9640_firmware apq8096_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 apq8096 sdx24 sdm439 qcs404_firmware mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 qcs605_firmware sc8180x mdm9206 sdm670_firmware qcs404 sdx24_firmware sdm636 sda845_firmware sa415m mdm9635m apq8098 qcn7605 mdm9205 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 msm8909_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sdm660 mdm9655_firmware sc8180x_firmware sa415m_firmware qcs405 sdm710 qm215 sc7180_firmware mdm9607 mdm9625_firmware sdm710_firmware qcn7605_firmware mdm9150 msm8937 msm8996_firmware msm8905 sm8150_firmware msm8909 mdm9655 apq8096au sdm439_firmware rennell sc7180 qcs405_firmware sdm630_firmware mdm9205_firmware sda660_firmware mdm9625 rennell_firmware qm215_firmware sdx55 msm8953_firmware msm8940 saipan_firmware sm6150_firmware apq8096au_firmware msm8917_firmware msm8998 sm8150 sdm850 kamorta msm8996 saipan nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14043

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.1||HIGH

EPSS-0.04% / 12.01%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-05 Aug, 2024 | 00:05

Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Product-sdm850_firmware kamorta_firmware mdm9150_firmware sa6155p_firmware sdm636_firmware sdm845 msm8998_firmware sdm660 sdx24 sdm630 qcs404_firmware sm8250_firmware mdm9650 sc8180x_firmware sa415m_firmware qcs405 sm7150_firmware sdm710 sc7180_firmware sm6150 sdm710_firmware sm7150 sa6155p sdm670 mdm9150 qcs605_firmware sc8180x sxr2130 sdm670_firmware qcs404 sdx24_firmware sm8150_firmware sxr2130_firmware sdm636 qcs405_firmware rennell sa415m sc7180 sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware mdm9205 qcs605 sdx55 sm6150_firmware sm8250 mdm9650_firmware msm8998 sm8150 sdm850 sda660 kamorta sdx55_firmware sxr1130_firmware nicobar_firmware sxr1130 sdm660_firmware nicobar sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14011

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.1||CRITICAL

EPSS-0.24% / 46.82%

7 Day CHG~0.00%

Published-16 Apr, 2020 | 10:46

Updated-05 Aug, 2024 | 00:05

Multiple Read overflows issue due to improper length check while decoding 3G attach accept/ SMS/ pdn connection reject/ esm data transport/ bearer modify context reject in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Product-mdm9150_firmware mdm9635m_firmware apq8096_firmware mdm9640_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 apq8096 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au mdm9645 sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware mdm9635m apq8098 mdm9205 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sdm660 mdm9655_firmware sc8180x_firmware sdm710 qm215 sc7180_firmware mdm9607 mdm9645_firmware mdm9625_firmware sdm710_firmware mdm9150 msm8937 mdm9207c_firmware msm8905 mdm9207c sm8150_firmware msm8909 mdm9655 apq8096au sdm439_firmware rennell sc7180 sdm630_firmware mdm9205_firmware sda660_firmware mdm9625 rennell_firmware qm215_firmware sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware sdm850 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CVE-2019-14123

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.12% / 32.25%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-05 Aug, 2024 | 00:12

Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2019-14057

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.1||CRITICAL

EPSS-0.29% / 51.65%

7 Day CHG~0.00%

Published-07 Feb, 2020 | 05:00

Updated-05 Aug, 2024 | 00:05

Buffer Over read of codec private data while parsing an mkv file due to lack of check of buffer size before read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6574AU, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130