ByteOS Network

While processing Attach Reject message, Valid exit condition is not met resulting into an infinite loop in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9635m_firmware qcm2150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm450_firmware sdm632 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware snapdragon_high_med_2016_firmware sm6150 msm8909w_firmware msm8976_firmware msm8996au sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdm636 sda845_firmware mdm9635m apq8098 mdm9615 mdm9205 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware mdm9655_firmware sdm660 sc8180x_firmware sdm710 qm215 mdm9607 apq8017_firmware mdm9625_firmware sdm710_firmware mdm9150 msm8937 msm8905 snapdragon_high_med_2016 sm8150_firmware msm8909 sxr2130_firmware mdm9655 apq8096au sdm439_firmware sdm630_firmware mdm9205_firmware sda660_firmware mdm9625 qm215_firmware msm8976 sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 mdm9615_firmware apq8017 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

CVE-2019-2337

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.37% / 57.97%

7 Day CHG~0.00%

Published-12 Dec, 2019 | 08:30

Updated-04 Aug, 2024 | 18:49

While Skipping unknown IES, EMM is reading the buffer even if the no of bytes to read are more than message length which may cause device to shutdown in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware qcm2150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware snapdragon_high_med_2016_firmware sm6150 msm8909w_firmware msm8976_firmware msm8996au sm7150 msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware apq8098 mdm9205 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 sm8250_firmware sdm660 mdm9655_firmware sc8180x_firmware sdm710 qm215 sdm710_firmware mdm9150 msm8937 msm8905 snapdragon_high_med_2016 sm8150_firmware msm8909 sxr2130_firmware mdm9655 apq8096au sdm439_firmware sdm630_firmware mdm9205_firmware sda660_firmware qm215_firmware msm8976 sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-27057

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 16.17%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:49

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Host

Transient DOS while handling beacon frames with invalid IE header length.

Vendor-Qualcomm Technologies, Inc.

Product-qcm8550_firmware immersive_home_214 wcn6650 ipq9574 qcn9000_firmware qca6595 sm8735 qcn9022 wcd9335 ipq6028_firmware wcd9370 qca8081_firmware qcn5224 qca6696 qam8620p_firmware wcn7880_firmware wcd9340_firmware sa8530p wcd9341_firmware ipq5028_firmware wcd9395_firmware sxr2330p_firmware qcn6024 wcn7881_firmware wcn7750 wcn6450 qcc2073_firmware qcc710_firmware ipq8076 fastconnect_6700 qcn6422_firmware ipq6018_firmware qcn6023 qcn5124_firmware wsa8832_firmware qca8337 wcd9395 ipq9048 ipq6000 qca6574au_firmware ipq8078a snapdragon_x72_5g_modem-rf ipq8078a_firmware qam8295p wcd9341 ipq5312 wcd9390 qca6574au sa8620p_firmware wsa8845h_firmware sa9000p_firmware srv1h qcn9100_firmware sm8650q_firmware qcn5122 qcs9100 qca6554a qcs5430 wcn7860 qcn6024_firmware qcm5430 qcm5430_firmware sa8770p qcn9000 ssg2115p qca8111 qcc710 qcn6132_firmware sa8540p qca8101 qca6777aq fastconnect_6900 qcn6402 qcn6432 immersive_home_326_firmware ipq5332_firmware sa7255p sm8635 qcn5052 qfw7114 wcd9385_firmware ipq9574_firmware qam8255p_firmware ipq8074a_firmware ipq8076a qcn5164 snapdragon_x65_5g_modem-rf qca6787aq wsa8845 sa6155p qcn9160 qca6564au_firmware csr8811_firmware qca8075 qam8650p video_collaboration_vc5_platform_firmware sa9000p srv1h_firmware qca8085 qca6595au sxr2250p_firmware sa6155p_firmware wsa8840 snapdragon_ar1_gen_1 srv1m_firmware qcs8550_firmware qca6698au snapdragon_8_gen_2_mobile_firmware qfw7124_firmware sm8750p qcn9012 ipq8070a_firmware qcn9070 qcf8001 wcn3910_firmware qca8384 sw-only_firmware qca8084 sm8635p snapdragon_8_gen_2_mobile qca8112 qmp1000 wcn3910 sdx65m wcd9370_firmware qcc2076 qca8102 sa7255p_firmware snapdragon_x72_5g_modem-rf_firmware qca6574a sm7635p_firmware ipq9570 snapdragon_8\+_gen_2_mobile sa8195p wcd9340 qcs8250_firmware qcm2290 snapdragon_auto_5g_modem-rf_gen_2 qcm6490 ipq5302 sa8540p_firmware qcn6122_firmware qcn5154_firmware ipq9048_firmware sxr2250p sm8550p_firmware qcm8550 qcn5122_firmware qcn9274 qcn9024 ipq8076a_firmware qca8384_firmware qca6574 sa8775p ipq9570_firmware sxr2230p_firmware qca6777aq_firmware qca6698au_firmware qcn9011 sa8775p_firmware qamsrv1h qcn6412_firmware wsa8845h qcn9024_firmware qca8082 sm8650q qcm2290_firmware sa8155p_firmware sa8155p wsa8830 ipq5312_firmware sm8550p qcf8000_firmware qcn9074_firmware ipq8174 immersive_home_318_firmware qcn6122 sa8255p_firmware sm7675_firmware qcc2073 ipq8174_firmware ar8035 sm7635_firmware ipq8072a qamsrv1m_firmware wcn7750_firmware sa8650p_firmware immersive_home_216_firmware wcn6450_firmware sm7635p immersive_home_316 qcf8000sfp_firmware srv1l_firmware qcs9100_firmware qcn6224 ipq8071a qcs615 qcn6112 ssg2125p_firmware wcn3950_firmware qxm8083 qca6698aq sa7775p_firmware qca8112_firmware sa8530p_firmware sm7635 wcd9378 sm8635p_firmware sm6650p_firmware fastconnect_6700_firmware video_collaboration_vc3_platform_firmware wcn3990 qcn6023_firmware qcn5164_firmware snapdragon_x75_5g_modem-rf_firmware qca8102_firmware ipq8078 snapdragon_8_gen_3_mobile qcs6490 qcs8250 ipq9554_firmware qcn9072 wsa8830_firmware qcn6224_firmware qca6678aq_firmware qca8386_firmware wsa8845_firmware wsa8832 qca8082_firmware wcd9378_firmware qcc2076_firmware srv1l immersive_home_216 srv1m sm7675p qca6678aq qcn6432_firmware ar8035_firmware qcn5022_firmware wcn7860_firmware sc8380xp qca4024_firmware ipq9008 ipq9554 qca6564au ipq9008_firmware qcn9074 ipq5300_firmware qca8111_firmware sa8195p_firmware qca8337_firmware qca9888 ipq5332 sg8275p_firmware ipq8173 qcm6490_firmware ipq8072a_firmware ipq6010_firmware vision_intelligence_400_firmware wcn3950 qcn6112_firmware qca8385 sm8750 snapdragon_auto_5g_modem-rf_gen_2_firmware qca6797aq_firmware ipq5028 qca8085_firmware qcf8001_firmware qcn9070_firmware sa8295p_firmware sw-only qcn9022_firmware ipq5010_firmware qcn6132 qca8101_firmware ipq6018 qcn9160_firmware qca6584au qcn6274_firmware wcn6755_firmware qcn9011_firmware wcn6650_firmware sc8380xp_firmware ipq5424 snapdragon_8_gen_3_mobile_firmware qcn5224_firmware qfw7114_firmware qca4024 qcs7230 qca6595_firmware fastconnect_7800_firmware qcn6422 immersive_home_214_firmware ipq5302_firmware qxm8083_firmware ipq5300 ipq8070a sm8635_firmware fastconnect_6900_firmware wcd9380 qam8255p sxr2230p qca8080 qmp1000_firmware wcn7880 sxr2330p wcn6755 qca8075_firmware immersive_home_3210 qcf8000 qcn5052_firmware sxr1230p wcn7881 sm6650 ipq6010 sdx65m_firmware video_collaboration_vc3_platform qca8385_firmware sm6650p qca6688aq qam8295p_firmware qcn6402_firmware wcn3990_firmware qca6698aq_firmware qcs2290 wcd9385 qcs2290_firmware qca8084_firmware ipq5424_firmware sa8255p qcs7230_firmware sxr1230p_firmware wcd9390_firmware qcn5024 qcs615_firmware sg8275p sdx55_firmware immersive_home_326 ipq8071a_firmware sm8750_firmware ssg2125p qca6554a_firmware qca8080_firmware ipq6028 snapdragon_x65_5g_modem-rf_firmware qcn9100 qamsrv1m wcn7861_firmware wcn7861 qam8650p_firmware video_collaboration_vc5_platform qcs6490_firmware sm6650_firmware ipq8076_firmware qam8620p wcd9335_firmware qca6584au_firmware qcn5152_firmware qcn6274 qfw7124 wsa8835 wsa8840_firmware qca6391_firmware qca6595au_firmware qcs8300_firmware qca6696_firmware qcs8300 wcd9380_firmware qca6574_firmware qca8081 qcn5124 qam8775p snapdragon_ar2_gen_1_firmware qca6797aq qcn5152 snapdragon_x75_5g_modem-rf qcn6412 sa8620p qca6574a_firmware sdx55 qcn9072_firmware qca9888_firmware ipq8074a immersive_home_3210_firmware qca9889 qcn5024_firmware wcd9375_firmware qca6787aq_firmware qca8386 snapdragon_ar1_gen_1_firmware qca6391 immersive_home_318 ipq5010 qcn9274_firmware sa7775p ipq8173_firmware qcs5430_firmware qcn9012_firmware sa8770p_firmware sa8295p qcs8550 ipq6000_firmware sm8735_firmware fastconnect_7800 sa8650p qam8775p_firmware sm8750p_firmware wcd9375 snapdragon_8\+_gen_2_mobile_firmware ipq8078_firmware qca6688aq_firmware qca9889_firmware snapdragon_ar2_gen_1 immersive_home_316_firmware qamsrv1h_firmware sm7675 qcn5154 vision_intelligence_400 wsa8835_firmware ssg2115p_firmware csr8811 qcn5022 sm7675p_firmware qcf8000sfp Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-21646

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.09% / 25.83%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:23

Updated-02 Aug, 2024 | 09:44

Reachable Assertion in Modem

Transient DOS in Modem while processing invalid System Information Block 1.

Vendor-Qualcomm Technologies, Inc.

Product-wcn3991_firmware wcn3991 wsa8830 qca8337_firmware wcd9380_firmware sd780g qca8337 sd865_5g sdx55m_firmware wcn6856_firmware wcd9360_firmware sdx65 wsa8835 qcx315_firmware wcd9380 sd765g_firmware sd888_5g qca6595au_firmware qca6390_firmware sd690_5g wcd9370 qca6574a sd690_5g_firmware wcn6855_firmware sm7325p sm8450 wcn6750 sm4375 wcn3998 wcd9385_firmware qcn6024_firmware sa515m wsa8815 sm7325p_firmware wcn6850 sd765 wcn7850 qca6574a_firmware sd695 sd768g_firmware sdx55_firmware qcn9024 qca6595au qca8081_firmware wcd9375_firmware wcn3998_firmware sm7250p_firmware qca6391 sdx55m wcd9360 wcn6740_firmware sd778g sdx65_firmware sa515m_firmware qcs6490 wcn7851 qcm6490_firmware sd480_firmware wcn6851_firmware wcn3988_firmware sd778g_firmware qcn9024_firmware wsa8810_firmware sd765g wcd9341_firmware sm4375_firmware sm8450_firmware sd765_firmware sd480 sd870 wcn6851 wsa8810 wcn6855 qca8081 wcn7851_firmware wcn6856 wcd9385 wcd9341 sd695_firmware sd768g qca6696_firmware qcs6490_firmware sd870_firmware wcn6740 qca6696 sdx70m_firmware qca6391_firmware qca6390 ar8035 wcd9375 sd780g_firmware wcd9370_firmware sdx55 wsa8830_firmware qcn6024 sdx70m sd865_5g_firmware qcm6490 sd888_5g_firmware wcn3988 wcn6850_firmware wcn7850_firmware wsa8815_firmware wsa8835_firmware sm7250p qcx315 wcn6750_firmware ar8035_firmware Snapdragon wcn6740_firmware wcn3991_firmware qca8337_firmware wcd9380_firmware sdx65_firmware sa515m_firmware qcm6490_firmware sd480_firmware wcn6851_firmware sdx55m_firmware wcn6856_firmware snapdragon_4_gen_1_firmware wcd9360_firmware wcn3988_firmware qcx315_firmware sd778g_firmware qcn9024_firmware wsa8810_firmware sd765g_firmware wcd9341_firmware qca6595au_firmware sd765_firmware qca6390_firmware wcn7851_firmware sd690_5g_firmware wcn6855_firmware sd695_firmware qca6696_firmware qcs6490_firmware sd870_firmware sdx70m_firmware qca6391_firmware wcd9385_firmware qcn6024_firmware sd780g_firmware wcd9370_firmware sd_8_gen1_5g_firmware wcn6750_firmware sm7325p_firmware wsa8830_firmware sd865_5g_firmware wsa8815_firmware sd888_5g_firmware wcn6850_firmware qca6574a_firmware wcn7850_firmware sd768g_firmware sdx55_firmware wsa8835_firmware wcd9375_firmware qca8081_firmware wcn3998_firmware sm7250p_firmware ar8035_firmware

CWE ID-CWE-617

Reachable Assertion

CVE-2023-33062

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing a BTM request.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33100

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.12% / 32.35%

7 Day CHG~0.00%

Published-01 Apr, 2024 | 15:05

Updated-13 Jan, 2025 | 21:54

Improper input validation in Multi-Mode Call Processor

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification.

Vendor-Qualcomm Technologies, Inc.

Product-qfw7124_firmware fastconnect_6700_firmware qcn6274 wsa8840_firmware wsa8832 qcc710 qcs4490 snapdragon_x35_5g_modem-rf fastconnect_7800_firmware snapdragon_8_gen_3_mobile_firmware wcd9370 qfw7124 qcm4490 snapdragon_4_gen_2_mobile snapdragon_auto_5g_modem-rf_gen_2 qfw7114 wsa8810_firmware qcn6024 sg8275p_firmware wsa8845_firmware snapdragon_8\+_gen_2_mobile snapdragon_8_gen_1_mobile qcn6224 qcc710_firmware snapdragon_4_gen_2_mobile_firmware qcm4490_firmware qcm8550 snapdragon_auto_5g_modem-rf_gen_2_firmware wcd9390 ar8035 wcd9340 wsa8835 wcn3950 fastconnect_7800 qcn6274_firmware wcd9395_firmware wsa8845h_firmware wsa8830 snapdragon_x70_modem-rf qfw7114_firmware qca8337 qca6584au_firmware qcs8550_firmware fastconnect_6900 snapdragon_x35_5g_modem-rf_firmware wsa8845 snapdragon_8_gen_2_mobile_firmware qca6584au wsa8835_firmware qep8111_firmware fastconnect_6700 qcn6224_firmware snapdragon_x75_5g_modem-rf qca6174a wcd9390_firmware wsa8815_firmware snapdragon_x65_5g_modem-rf_firmware snapdragon_8_gen_2_mobile wcn3988 qcn6024_firmware snapdragon_8\+_gen_2_mobile_firmware wsa8845h wsa8815 sm8550p_firmware wcd9385_firmware fastconnect_6900_firmware wcd9380 wsa8832_firmware wcn3950_firmware wcd9385 wcd9395 sm8550p wcd9340_firmware snapdragon_x75_5g_modem-rf_firmware qca8081_firmware qep8111 wsa8830_firmware snapdragon_8\+_gen_1_mobile_firmware qcn9024_firmware qca6698aq qcs4490_firmware snapdragon_x70_modem-rf_firmware qcs8550 wcd9380_firmware snapdragon_8_gen_1_mobile_firmware snapdragon_x65_5g_modem-rf qca6698aq_firmware qca6174a_firmware qca8081 wsa8840 sg8275p wcn3988_firmware qcm8550_firmware qcn9024 wcd9370_firmware snapdragon_8\+_gen_1_mobile ar8035_firmware snapdragon_8_gen_3_mobile qca8337_firmware wsa8810 Snapdragon qca6174a_firmware qca8337_firmware qcm4490_firmware qcm8550_firmware qca6584au_firmware qcn6274_firmware qcs4490_firmware qep8111_firmware qfw7114_firmware sg8275p_firmware fastconnect_6900_firmware qcn6024_firmware qcs8550_firmware sm8550p_firmware ar8035_firmware qcc710_firmware qcn6224_firmware fastconnect_6700_firmware qcn9024_firmware fastconnect_7800_firmware qca8081_firmware qfw7124_firmware snapdragon_8_gen_1_mobile_platform_firmware snapdragon_4_gen_2_mobile_platform_firmware snapdragon_8_gen_2_mobile_platform_firmware qca6698aq_firmware

CWE ID-CWE-20

Improper Input Validation

CVE-2023-33080

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 41.56%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Buffer over-read in WLAN Firmware

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33095

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.88%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-11 Aug, 2025 | 15:06

Reachable Assertion in Multi-Mode Call Processor

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-617

Reachable Assertion

CVE-2025-21452

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 14.44%

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:25

Updated-20 Aug, 2025 | 19:22

Reachable Assertion in Modem

Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-617

Reachable Assertion

CVE-2025-21434

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.10% / 28.27%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:16

Updated-07 Apr, 2025 | 14:48

Buffer Over-read in WLAN Host

Transient DOS may occur while parsing EHT operation IE or EHT capability IE.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33104

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.14% / 35.27%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-11 Aug, 2025 | 15:06

Improper input Validation in Multi-Mode Call Processor

Transient DOS while processing PDU Release command with a parameter PDU ID out of range.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-20

Improper Input Validation

CVE-2025-21428

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.08% / 23.64%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:15

Updated-08 Apr, 2025 | 03:56

Buffer Over-read in WLAN Host

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33044

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.67%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Reachable Assertion in Data Modem

Transient DOS in Data modem while handling TLB control messages from the Network.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-617

Reachable Assertion

CVE-2025-21446

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 21.29%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:48

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33020

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.06% / 19.34%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 15:32

Improper Authorization in WLAN Host

Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-285

Improper Authorization

CVE-2025-21459

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 22.22%

7 Day CHG~0.00%

Published-06 May, 2025 | 08:32

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Host Communication

Transient DOS while parsing per STA profile in ML IE.

Vendor-Qualcomm Technologies, Inc.

Product-qca6678aq_firmware qcm8550_firmware wcn6650 wsa8845_firmware wsa8832 wcd9378_firmware qcc2076_firmware qca6595 sm8735 srv1l wcd9335 sm7675p qca6678aq qca8081_firmware srv1m wcd9370 ar8035_firmware qca6696 qam8620p_firmware wcn7880_firmware wcd9340_firmware wcn7860_firmware wcd9341_firmware sxr2330p_firmware wcd9395_firmware wcn7881_firmware wcn7750 wcn6450 qcc2073_firmware qcc710_firmware fastconnect_6700 qca6564au wsa8832_firmware sa8195p_firmware qca8337_firmware qca8337 wcd9395 sg8275p_firmware qcm6490_firmware qca6574au_firmware snapdragon_x72_5g_modem-rf qam8295p wcd9341 qca6574au vision_intelligence_400_firmware wcd9390 sa8620p_firmware wsa8845h_firmware flight_rb5_5g sa9000p_firmware srv1h sm8650q_firmware sm8750 qca6797aq_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware qcs9100 qca6554a qcs5430 sa8295p_firmware wcn7860 qcm5430 qcm5430_firmware sa8770p qca6584au qcn6274_firmware ssg2115p qcn9011_firmware qcc710 wcn6755_firmware wcn6650_firmware qca6777aq snapdragon_8_gen_3_mobile_firmware qfw7114_firmware qca6595_firmware qcs7230 fastconnect_7800_firmware fastconnect_6900 sa7255p sm8635 qfw7114 sm8635_firmware wcd9385_firmware fastconnect_6900_firmware qam8255p_firmware robotics_rb5_firmware wcd9380 qam8255p sxr2230p qmp1000_firmware wcn7880 sxr2330p wcn6755 qca6787aq wsa8845 sa6155p qca6564au_firmware sxr1230p qam8650p video_collaboration_vc5_platform_firmware sa9000p srv1h_firmware sm6650 wcn7881 qca6595au video_collaboration_vc3_platform sxr2250p_firmware sa6155p_firmware sm6650p wsa8840 qca6688aq qam8295p_firmware snapdragon_ar1_gen_1 srv1m_firmware qcs8550_firmware wcn3990_firmware snapdragon_8_gen_2_mobile_firmware qfw7124_firmware qca6698aq_firmware sm8750p wcd9385 qcn9012 sa8255p qcs7230_firmware sm8635p sxr1230p_firmware wcd9390_firmware qmp1000 snapdragon_8_gen_2_mobile qcs615_firmware sg8275p wcd9370_firmware sm8750_firmware qcc2076 flight_rb5_5g_firmware ssg2125p qca6554a_firmware sa7255p_firmware qca6574a snapdragon_8\+_gen_2_mobile snapdragon_x72_5g_modem-rf_firmware sa8195p wcd9340 qcs8250_firmware qamsrv1m robotics_rb5 snapdragon_auto_5g_modem-rf_gen_2 wcn7861_firmware qcm6490 wcn7861 qam8650p_firmware video_collaboration_vc5_platform sm8550p_firmware sxr2250p qcm8550 qcs6490_firmware qcn9274 sm6650_firmware qam8620p qca6584au_firmware qcn6274 qca6574 qfw7124 qrb5165n_firmware sa8775p qca6595au_firmware qca6391_firmware sxr2230p_firmware qca6777aq_firmware wsa8835 wsa8840_firmware qcs8300_firmware qcn9011 sa8775p_firmware qamsrv1h qca6696_firmware wsa8845h qcs8300 wcd9380_firmware qca6574_firmware sm8650q sa8155p_firmware qca8081 sa8155p wcd9335_firmware wsa8830 qam8775p qca6797aq snapdragon_ar2_gen_1_firmware sm8550p snapdragon_x75_5g_modem-rf sa8620p sm7675_firmware sa8255p_firmware qcc2073 ar8035 qca6574a_firmware qamsrv1m_firmware sm7635_firmware wcn7750_firmware sa8650p_firmware wcn6450_firmware qca6787aq_firmware wcd9375_firmware sa7775p qca6391 snapdragon_ar1_gen_1_firmware srv1l_firmware qcn6224 qcs9100_firmware qcn9274_firmware qcs615 qcn9012_firmware qcs5430_firmware qca6698aq sa7775p_firmware sm7635 ssg2125p_firmware qrb5165n sa8295p sa8770p_firmware qcs8550 sm8735_firmware fastconnect_7800 sa8650p qam8775p_firmware wcd9378 sm8635p_firmware qca6688aq_firmware sm6650p_firmware sm8750p_firmware snapdragon_8\+_gen_2_mobile_firmware wcd9375 snapdragon_ar2_gen_1 fastconnect_6700_firmware qamsrv1h_firmware sm7675 video_collaboration_vc3_platform_firmware wcn3990 snapdragon_x75_5g_modem-rf_firmware vision_intelligence_400 ssg2115p_firmware wsa8835_firmware qcs6490 qcs8250 sm7675p_firmware snapdragon_8_gen_3_mobile wsa8830_firmware qcn6224_firmware Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21448

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.10% / 28.27%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:16

Updated-07 Apr, 2025 | 14:17

Buffer Over-read in WLAN Firmware

Transient DOS may occur while parsing SSID in action frames.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21463

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.06% / 18.74%

7 Day CHG~0.00%

Published-03 Jun, 2025 | 05:52

Updated-04 Jun, 2025 | 14:54

Buffer Over-read in WLAN Host Communication

Transient DOS while processing the EHT operation IE in the received beacon frame.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33016

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.09% / 26.67%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN firmware while parsing MLO (multi-link operation).

Vendor-Qualcomm Technologies, Inc.

Product-qcn5024_firmware wsa8830 qcn9070 sxr2230p_firmware immersive_home_318_firmware ipq8173_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 snapdragon_8_gen_1 ipq8078a ipq5028_firmware ipq6000 immersive_home_216 ssg2115p qcn5152_firmware qcn9000_firmware wcd9385_firmware ipq8076a qca8386_firmware qcn6024_firmware sd_8_gen1_5g_firmware qca8084_firmware ipq8074a qcn5124_firmware qca8082_firmware qcn5164_firmware qcn5122_firmware qca8081_firmware qcn6023_firmware ipq5010 immersive_home_214 ipq8078a_firmware qcn9274 ipq8174 ipq5028 qcn5052 ipq6010 qcs8550_firmware qcn9074 qca8085 qcn6132 qca8081 ipq8071a qcn6023 ipq8071a_firmware wcd9385 qca8085_firmware qca9888_firmware qcn6122 immersive_home_316_firmware qcn5154_firmware csr8811 qcn9100_firmware wsa8830_firmware ipq5010_firmware ipq8074a_firmware wsa8835_firmware qcn5022_firmware immersive_home_216_firmware wcd9380_firmware ssg2125p qcn9000 ipq8072a immersive_home_214_firmware ipq8076a_firmware ipq8078 qca8084 ipq8173 snapdragon_8_gen_1_firmware qcn5164 snapdragon_ar2_gen_1 qcn6122_firmware wsa8835 sxr1230p_firmware csr8811_firmware sd_8_gen1_5g wcd9380 qcn5154 qca8075_firmware ssg2125p_firmware qcn5024 qca9889 qcn6132_firmware sxr1230p qca9888 qcn5052_firmware qcn9274_firmware ipq8070a_firmware ipq6018_firmware ipq8076_firmware sxr2230p ipq8076 qcn5152 ipq6028 qcn9024 ipq9574_firmware fastconnect_7800 qcn9100 snapdragon_ar2_gen_1_firmware ipq8078_firmware wsa8832_firmware fastconnect_6900 qcn9070_firmware fastconnect_6900_firmware immersive_home_318 ipq6028_firmware ipq8072a_firmware immersive_home_316 qca9889_firmware ipq9574 qcn5122 qcn9024_firmware ipq8174_firmware fastconnect_7800_firmware wsa8832 ipq6018 qcn5022 ipq6010_firmware qcs8550 qca4024 qca8075 qcn9022_firmware qcn6024 qcn9022 ipq8070a qcn9072_firmware ipq6000_firmware ssg2115p_firmware qcn9074_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21429

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.08% / 23.64%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:15

Updated-08 Apr, 2025 | 03:56

Buffer Over-read in WLAN Host

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33089

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.22% / 44.71%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

NULL Pointer Dereference in WLAN Firmware

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-476

NULL Pointer Dereference

CVE-2023-33061

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21435

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.10% / 28.27%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:16

Updated-07 Apr, 2025 | 14:37

Buffer Over-read in WLAN Host Communication

Transient DOS may occur while parsing extended IE in beacon.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21477

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.12% / 31.39%

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:25

Updated-20 Aug, 2025 | 19:42

Improper Input Validation in Modem

Transient DOS while processing CCCH data when NW sends data with invalid length.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-20

Improper Input Validation

CVE-2025-21449

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 16.17%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:48

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Embedded SW

Transient DOS may occur while processing malformed length field in SSID IEs.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33019

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.06% / 19.88%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 15:32

Improper Authorization in WLAN Host

Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-285

Improper Authorization

CVE-2023-33109

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.17% / 39.03%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-11 Aug, 2025 | 15:06

NULL Pointer Dereference in WLAN Firmware

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-476

NULL Pointer Dereference

CVE-2023-33096

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.88%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-11 Aug, 2025 | 15:06

Reachable Assertion in Multi-Mode Call Processor

Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-617

Reachable Assertion

CVE-2023-33098

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21430

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.08% / 23.64%

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:15

Updated-07 Apr, 2025 | 15:20

Buffer Over-read in WLAN Host

Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2025-21454

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.05% / 16.17%

7 Day CHG~0.00%

Published-08 Jul, 2025 | 12:49

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Embedded SW

Transient DOS while processing received beacon frame.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33084

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.67%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-10 Jan, 2025 | 17:47

Improper Release of Memory Before Removing Last Reference in Data Modem

Transient DOS while processing IE fragments from server during DTLS handshake.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-401

Missing Release of Memory after Effective Lifetime

CVE-2023-33086

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.14% / 35.09%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-11 Aug, 2025 | 15:06

Improper Release of Memory Before Removing Last Reference in Data Modem

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-401

Missing Release of Memory after Effective Lifetime

CVE-2023-33105

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-2.38% / 84.36%

7 Day CHG~0.00%

Published-04 Mar, 2024 | 10:48

Updated-10 Jan, 2025 | 17:50

Configuration Issue in WLAN Host and Firmware

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

Vendor-Qualcomm Technologies, Inc.

CVE-2023-33057

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.10% / 27.63%

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:47

Updated-11 Aug, 2025 | 15:06

Improper Input Validation in Multi-Mode Call Processor

Transient DOS in Multi-Mode Call Processor while processing UE policy container.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-20

Improper Input Validation

CVE-2023-33049

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.09% / 26.92%

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:46

Updated-11 Aug, 2025 | 15:06

Improper Release of Memory Before Removing Last Reference in Multi-Mode Call Processor

Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-401

Missing Release of Memory after Effective Lifetime

CVE-2023-33099

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.12% / 32.35%

7 Day CHG~0.00%

Published-01 Apr, 2024 | 15:05

Updated-11 Aug, 2025 | 15:06

Improper Input Validation in Multi-Mode Call Processor

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-20

Improper Input Validation

CVE-2023-33112

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.23% / 45.64%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33048

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 41.56%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-02 Aug, 2024 | 15:32

Buffer over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing t2lm buffers.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33097

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.70%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while processing a FTMR frame.

Vendor-Qualcomm Technologies, Inc.

Product-qcn5024_firmware qam8255p_firmware snapdragon_8_gen_1_mobile_platform wsa8830 qcn9070 sxr2230p_firmware qca8337 qam8650p qfw7124 sg8275p_firmware ipq8173_firmware qam8775p qcf8001 qcn6224_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 wsa8840 immersive_home_318_platform_firmware ipq8078a ipq5028_firmware qca6595au_firmware ipq6000 ssg2115p qcn5152_firmware qca0000_firmware qca6584au_firmware qcn9000_firmware snapdragon_8_gen_2_mobile_platform ipq9554 qca6554a_firmware wcd9385_firmware immersive_home_216_platform ipq8076a immersive_home_316_platform immersive_home_316_platform_firmware qca8386_firmware qcn6024_firmware sd_8_gen1_5g_firmware qca8084_firmware immersive_home_318_platform ipq8074a qcn5124_firmware qca8082_firmware qca6574au_firmware qcn5122_firmware qcn5164_firmware sdx55_firmware qca6595au qca8081_firmware qcn6023_firmware qfw7114 wsa8845h_firmware qcn9002 ipq5010 qca6564au_firmware qca6584au snapdragon_x65_5g_modem-rf_system_firmware qcm8550_firmware ipq8078a_firmware qcn9274 ipq8174 qcn9001 ipq5028 wsa8840_firmware qca6698aq qcn5052 qca0000 qcf8001_firmware ipq6010 qcs8550_firmware sc8380xp_firmware qcn6112_firmware qcn9074 qca8085 sdx65m wcd9340 qcn6132 qcn6224 qcn9013 wsa8845h snapdragon_ar2_gen_1_platform_firmware snapdragon_x75_5g_modem-rf_system wcd9395_firmware qca8081 qcf8000 qca6698aq_firmware ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware immersive_home_3210_platform qca8085_firmware qam8775p_firmware qca9888_firmware qcn6122 wcd9385 qca6696_firmware ipq9008_firmware ipq9570 qcn5154_firmware qca6797aq ar8035 csr8811 wcd9390 qcc710_firmware qcn9100_firmware wsa8830_firmware ipq5010_firmware ipq8074a_firmware wsa8835_firmware qcn5022_firmware immersive_home_216_platform_firmware snapdragon_8_gen_2_mobile_platform_firmware qca8072 qca8337_firmware wcd9380_firmware ssg2125p qcn9000 ipq8072a qcf8000_firmware qca6554a ipq8076a_firmware qca6595 ipq8078 qca6564au qca8084 ipq8173 qcm8550 qcn9001_firmware ipq9008 qcn9012 qcn5164 immersive_home_326_platform_firmware qcn6122_firmware qca6574 sxr1230p_firmware wsa8835 snapdragon_8\+_gen_2_mobile_platform_firmware csr8811_firmware sd_8_gen1_5g qcn6274 wcd9380 ipq9554_firmware qcn5054_firmware qcn5154 qca8075_firmware ssg2125p_firmware qca6574a qcn5024 qca9889 qcn6132_firmware qcn9003_firmware sxr1230p qca9888 qca8072_firmware sg8275p qcn9012_firmware qcn5052_firmware qcn9274_firmware qcc2076_firmware ipq8070a_firmware qcn9003 qfw7114_firmware wsa8845 qcc2073_firmware ipq6018_firmware ipq8076_firmware qca6574_firmware wcd9340_firmware qcn6112 sxr2230p ipq8076 wsa8845_firmware qca6574a_firmware qcn5152 ipq6028 sc8380xp qcn9024 ipq9574_firmware immersive_home_3210_platform_firmware fastconnect_7800 qcn9100 qcn6274_firmware snapdragon_x65_5g_modem-rf_system ipq8078_firmware ipq9570_firmware fastconnect_6900 qcn5054 qcn9070_firmware fastconnect_6900_firmware snapdragon_x75_5g_modem-rf_system_firmware wsa8832_firmware ipq6028_firmware ipq8072a_firmware qca6797aq_firmware qca6574au qca9889_firmware ipq9574 qcn5122 qcn9024_firmware ipq8174_firmware fastconnect_7800_firmware snapdragon_8\+_gen_2_mobile_platform wsa8832 ipq5332_firmware ipq5332 sm8550p snapdragon_8_gen_1_mobile_platform_firmware immersive_home_326_platform snapdragon_ar2_gen_1_platform ipq6018 qcn5022 qcn9013_firmware qam8650p_firmware qcc710 ipq6010_firmware immersive_home_214_platform qca6595_firmware wcd9395 qca6696 qcs8550 immersive_home_214_platform_firmware qca4024 sm8550p_firmware sdx55 qca8075 qcn9022_firmware wcd9390_firmware qcn6024 qcn9022 qcc2076 ipq8070a qcn9002_firmware qcn9072_firmware ipq6000_firmware ssg2115p_firmware qcn9074_firmware qfw7124_firmware qam8255p qcc2073 ar8035_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33043

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.67%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Reachable Assertion in Modem

Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.

Vendor-Qualcomm Technologies, Inc.

Product-qcm8550_firmware wsa8845_firmware sm7315_firmware wsa8832 wsa8840 wcn3991_firmware sdx57m_firmware qcs8550_firmware wcd9370 qca8081_firmware sm7315 ar8035_firmware sm8475 wsa8830_firmware wcd9385 wcd9395_firmware qcn6024 qcs4490_firmware sd888_firmware snapdragon_8_gen_2_mobile_platform snapdragon_7c\+_gen_3_compute_firmware wcn6740_firmware wcd9390_firmware wcn6750 sm7325-af_firmware wsa8815_firmware sm7325-ae_firmware wsa8832_firmware wcn6750_firmware qca8337_firmware wcd9370_firmware qca8337 snapdragon_x70_modem-rf_system_firmware wcd9395 qcm6490_firmware sm7325-ae qcm4490 wcn785x-5 sm8350-ac_firmware sm4350 qcm4490_firmware wcd9390 sm7325p wcn785x-5_firmware wcn3950 qcm6490 wsa8810_firmware wsa8845h_firmware wcn3998 sm8550p_firmware wcn3998_firmware qcm8550 wcn3988 qcs6490_firmware sm8450 snapdragon_x65_5g_modem-rf_system qcn9024 snapdragon_x65_5g_modem-rf_system_firmware sm7325-af snapdragon_7c\+_gen_3_compute wsa8835 wsa8840_firmware sm4350_firmware sm7350-ab_firmware qca6391_firmware wcn3991 sm6375_firmware sdx57m qcn9024_firmware qcn6024_firmware wsa8845h wcd9380_firmware snapdragon_4_gen_2_mobile_platform_firmware wcn685x-1_firmware qca8081 wsa8815 sm4375 sm8350 wsa8830 sm8550p sm4375_firmware sd888 snapdragon_4_gen_2_mobile_platform wcn785x-1_firmware sm6375 ar8035 wcn685x-5 wcn6740 wcd9375_firmware sm8450_firmware qca6391 snapdragon_x70_modem-rf_system wcn785x-1 sm8475_firmware wcn3950_firmware wcd9385_firmware snapdragon_8_gen_2_mobile_platform_firmware wcd9380 qcs8550 wcn685x-1 sm7325p_firmware qcs4490 wcd9375 wcn685x-5_firmware snapdragon_8\+_gen_2_mobile_platform_firmware wsa8845 wcn3988_firmware sm7350-ab video_collaboration_vc3_platform_firmware sm4350-ac_firmware wsa8835_firmware sm8350_firmware wsa8810 qcs6490 snapdragon_8\+_gen_2_mobile_platform sm4350-ac sm8350-ac video_collaboration_vc3_platform Snapdragon

CWE ID-CWE-617

Reachable Assertion

CVE-2023-33047

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.19% / 40.87%

7 Day CHG~0.00%

Published-07 Nov, 2023 | 05:26

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while parsing no-inherit IES.

Vendor-Qualcomm Technologies, Inc.

Product-qcm8550_firmware sd865_5g ipq9574 qcn9000_firmware qcn6102_firmware qca6595 qcn9022 ipq6028_firmware immersive_home_214_platform qca8081_firmware wcd9370 qcn9001 qca8072 qca6696 wcd9340_firmware ipq5028_firmware wcd9395_firmware qcn6024 qcn9003_firmware qca6390 ar9380 qcc2073_firmware qcc710_firmware ipq8076 qca6426 wcn6740_firmware ipq6018_firmware qca9984_firmware qcn6023 qcn5124_firmware wsa8832_firmware immersive_home_216_platform qca8337 qca9994_firmware qca6426_firmware wcd9395 ipq6000 qca6574au_firmware ipq8078a ipq8078a_firmware wcn785x-5 qam8295p qca6574au wcd9390 wsa8810_firmware wsa8845h_firmware qcn9100_firmware qca2064_firmware qcn5122 qca6554a qcn6024_firmware qca9886_firmware sm8350 qcn9000 ssg2115p qcc710 qcn6132_firmware qca2062_firmware qsm8350_firmware qcn5054 sm8450_firmware ipq5332_firmware qcn5052 qca9980 qfw7114 wcd9385_firmware snapdragon_x55_5g_modem-rf_system ipq9574_firmware qam8255p_firmware ipq8064 ipq8074a_firmware ipq8076a qcn5164 snapdragon_ar2_gen_1_platform_firmware qcs4490 immersive_home_3210_platform_firmware snapdragon_8\+_gen_2_mobile_platform_firmware wsa8845 qcn6100_firmware qca6564au_firmware csr8811_firmware wsa8810 qca8075 qam8650p qca8085 snapdragon_8\+_gen_2_mobile_platform sm8350-ac qcn6100 qca6595au wsa8840 qcs8550_firmware qca6390_firmware qca9986_firmware qfw7124_firmware qca6436_firmware qcn9012 ipq8070a_firmware qcn9070 qcs4490_firmware snapdragon_8_gen_2_mobile_platform qcf8001 qca8084 sm8250-ac_firmware sdx65m wcd9370_firmware snapdragon_x55_5g_modem-rf_system_firmware qcc2076 qca6574a ipq9570 wcd9340 qcm6490 immersive_home_316_platform_firmware qcn6122_firmware qcn5154_firmware sm8550p_firmware immersive_home_3210_platform qcm8550 qcn5122_firmware qcn9274 qcn9024 ipq8076a_firmware qca6574 snapdragon_x75_5g_modem-rf_system ipq9570_firmware sxr2230p_firmware ar9380_firmware qca2066_firmware qcn9024_firmware wsa8845h qca8082 qca8072_firmware wsa8830 sm8550p qcf8000_firmware qcn9074_firmware ipq8174 qcn6122 sa8255p_firmware ipq8174_firmware wcn785x-1_firmware qcc2073 ar8035 ipq8072a qca2065 qca9985 qcn6224 ipq8071a sc8280xp-ab sm8475_firmware qcn6112 qca6698aq wcn3950_firmware ssg2125p_firmware wcn685x-1 video_collaboration_vc3_platform_firmware qcn6023_firmware qcn5164_firmware qcn9002 ipq8078 immersive_home_326_platform_firmware qcs6490 ipq9554_firmware sc8280xp-bb_firmware qcn9072 wsa8830_firmware qcn6224_firmware qca6678aq_firmware qca8386_firmware wsa8845_firmware wsa8832 qca8082_firmware qcc2076_firmware sxr2130_firmware qca6678aq ar8035_firmware qcn5022_firmware sm8475 qca9992 sc8380xp sm8250-ab_firmware qca4024_firmware qca0000_firmware sd888_firmware ipq9008 ipq9554 qca6564au qca9992_firmware qca9990 ipq9008_firmware qcn9074 immersive_home_214_platform_firmware wsa8815_firmware sm8250-ab qca8337_firmware qcn5054_firmware qca9888 ipq5332 qcn9013 sg8275p_firmware ipq8173 qcm6490_firmware ipq8072a_firmware sm8350-ac_firmware ipq6010_firmware qcm4490_firmware wcn785x-5_firmware wcn3950 snapdragon_xr2_5g_platform qcn6112_firmware snapdragon_x65_5g_modem-rf_system_firmware qca6797aq_firmware sm7350-ab_firmware ipq5028 qca9986 qcf8001_firmware qcn9070_firmware qca8085_firmware sa8295p_firmware qca9984 ipq5010_firmware qcn9022_firmware qca9886 qcn6132 ipq6018 qcn6102 qca6584au sd888 qcn6274_firmware wcn685x-5 wcn6740 sc8380xp_firmware ipq8065 qfw7114_firmware qca4024 sc8280xp-ab_firmware qca6595_firmware sm8250-ac sm8250_firmware qcn9001_firmware immersive_home_216_platform_firmware ipq8070a wcd9380 qam8255p sxr2230p qca9990_firmware snapdragon_xr2_5g_platform_firmware qcn9003 qca8075_firmware qcf8000 qcn5052_firmware sm7350-ab snapdragon_auto_5g_modem-rf_firmware qca2064 sm8350_firmware sxr1230p qca2065_firmware ipq6010 sdx65m_firmware video_collaboration_vc3_platform qca9980_firmware qca9985_firmware qam8295p_firmware qca6698aq_firmware wcd9385 qca9994 qsm8350 sc8280xp-bb qca8084_firmware sa8255p sxr1230p_firmware wcd9390_firmware immersive_home_318_platform_firmware wcn6750 qcn5024 sg8275p wcn6750_firmware sdx55_firmware ipq8071a_firmware snapdragon_auto_5g_modem-rf ssg2125p qca6554a_firmware sxr2130 ipq6028 qcm4490 qcn9100 immersive_home_326_platform qam8650p_firmware qcn9013_firmware qca2062 qcs6490_firmware sm8450 snapdragon_x65_5g_modem-rf_system ipq8076_firmware qca6584au_firmware qcn5152_firmware qcn6274 qca6436 qfw7124 wsa8835 wsa8840_firmware qca6391_firmware qca6595au_firmware qca0000 sm8250 snapdragon_ar2_gen_1_platform ipq8068 qca6696_firmware wcd9380_firmware qca6574_firmware qca8081 wsa8815 sd_8_gen1_5g qcn5124 qam8775p ipq8064_firmware qca6797aq qcn5152 ipq8065_firmware qca6574a_firmware sdx55 qcn9072_firmware qca9888_firmware ipq8074a immersive_home_318_platform qca9889 qcn5024_firmware sd_8_gen1_5g_firmware qcn9002_firmware wcd9375_firmware qca8386 qca6391 ipq5010 qcn9274_firmware wcn785x-1 ipq8173_firmware qcn9012_firmware snapdragon_8_gen_2_mobile_platform_firmware sa8295p qcs8550 ipq8068_firmware ipq6000_firmware qam8775p_firmware sd865_5g_firmware wcd9375 ipq8078_firmware wcn685x-5_firmware qca9889_firmware qcn5154 immersive_home_316_platform wsa8835_firmware qca2066 ssg2115p_firmware csr8811 qcn5022 snapdragon_x75_5g_modem-rf_system_firmware wcn685x-1_firmware Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2023-33116

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.32% / 54.62%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-17 Jun, 2025 | 19:55

Buffer over-read without Checking Size of Input in WLAN Host

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

Vendor-Qualcomm Technologies, Inc.

Product-qcn5024_firmware qcn9070 ipq4028_firmware qca8337 qfw7124 ar9380 ipq8173_firmware qcf8001 flight_rb5_5g_platform flight_rb5_5g_platform_firmware qcn6224_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 qca9880_firmware qca9992 immersive_home_318_platform_firmware ipq8078a ipq5028_firmware ipq6000 qcn5152_firmware qca0000_firmware qrb5165n_firmware qcn9000_firmware qca9984_firmware wcd9385_firmware immersive_home_216_platform ipq8076a immersive_home_316_platform immersive_home_316_platform_firmware qca8386_firmware qcn6024_firmware qca8084_firmware immersive_home_318_platform ipq8074a qcn5124_firmware qcn9011_firmware qca8082_firmware qcn5164_firmware qcn5122_firmware sdx55_firmware qca8081_firmware qcn6023_firmware qfw7114 qrb5165n ipq5010 ipq8070_firmware snapdragon_x65_5g_modem-rf_system_firmware ipq8065 ipq8078a_firmware qcn9274 ipq8174 qca9990 qrb5165m_firmware ipq5028 qca7500 ipq4029_firmware qcn5052 qca0000 qcf8001_firmware ipq6010 ipq8068 qcn6112_firmware qcn9074 qca8085 sdx65m wcd9340 qcn6132 qcn6224 qcn9013 snapdragon_x75_5g_modem-rf_system qca8081 ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware immersive_home_3210_platform qca8085_firmware qca9888_firmware ipq8068_firmware qcn6122 wcd9385 ipq9008_firmware ipq9570 qcn5154_firmware ar8035 csr8811 qca9898_firmware ipq4019 qcc710_firmware qcn9100_firmware robotics_rb5_platform qca9992_firmware ipq5010_firmware ipq8074a_firmware qca9898 qcn5022_firmware ipq4028 immersive_home_216_platform_firmware qca9985_firmware robotics_rb5_platform_firmware ipq4018_firmware qca8337_firmware wcd9380_firmware qcn9000 ipq8072a qca7500_firmware qca9980_firmware ipq8076a_firmware ar9380_firmware ipq8078 qca8084 ipq8173 ipq9008 qcn9012 qcn5164 immersive_home_326_platform_firmware qcn6122_firmware ipq8065_firmware csr8811_firmware qcn6274 wcd9380 qcn5154 qca8075_firmware ipq4018 ipq4019_firmware qcn5024 qca9889 qcn6132_firmware qca9888 qca9985 qca9994_firmware qcn5052_firmware qcn9012_firmware qcn9274_firmware ipq8070a_firmware qfw7114_firmware wcn3980 ipq6018_firmware ipq8076_firmware qca9886 wcd9340_firmware qcn6112 ipq8076 qca9984 ipq6028 ipq8064 qcn5152 qcn9024 qrb5165m ipq9574_firmware wcn3980_firmware immersive_home_3210_platform_firmware qca6391 ipq8064_firmware fastconnect_7800 qcn9100 qcn6274_firmware snapdragon_x65_5g_modem-rf_system ipq8078_firmware ipq9570_firmware fastconnect_6900 qcn9070_firmware snapdragon_x75_5g_modem-rf_system_firmware fastconnect_6900_firmware ipq8070 ipq6028_firmware ipq8072a_firmware qcn9011 qca9994 qca9889_firmware ipq9574 qca9980 qcn5122 ipq8174_firmware qcn9024_firmware qca9880 fastconnect_7800_firmware immersive_home_326_platform ipq6018 qcn5022 qcn9013_firmware qca9886_firmware qcc710 ipq6010_firmware immersive_home_214_platform qca6391_firmware immersive_home_214_platform_firmware qca4024 sdx55 qca8075 qcn9022_firmware qcn6024 qcn9022 qca9990_firmware ipq8070a qcn9072_firmware ipq6000_firmware qcn9074_firmware qfw7124_firmware ipq4029 ar8035_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33015

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 22.22%

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 15:32

Buffer Over-read in WLAN Firmware

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33041

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.91%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-02 Aug, 2024 | 15:32

Reachable assertion in WLAN Firmware

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.

Vendor-Qualcomm Technologies, Inc.

Product-qcn5024_firmware qam8255p_firmware wsa8830 qcn9070 sxr2230p_firmware qca8337 qam8650p qfw7124 ipq8173_firmware wcn785x-5 qam8775p qcf8001 flight_rb5_5g_platform flight_rb5_5g_platform_firmware qcn6224_firmware qcn5124 qca4024_firmware qca8082 qcn9072 qca8386 wsa8840 immersive_home_318_platform_firmware ipq8078a ipq5028_firmware qca6595au_firmware ipq6000 ssg2115p qcn5152_firmware qca0000_firmware qca6584au_firmware wcn685x-1 qrb5165n_firmware qcn9000_firmware snapdragon_8_gen_2_mobile_platform ipq9554 qca6554a_firmware wcd9385_firmware immersive_home_216_platform ipq8076a immersive_home_316_platform immersive_home_316_platform_firmware qca8386_firmware qcn6024_firmware qca8084_firmware immersive_home_318_platform ipq8074a qcn5124_firmware qcn9011_firmware qca8082_firmware qca6574au_firmware qcn5122_firmware qcn5164_firmware sdx55_firmware qca6595au qca8081_firmware qcn6023_firmware qfw7114 wsa8832_firmware wsa8845h_firmware qrb5165n ipq5010 qca6564au_firmware qca6584au ipq8070_firmware snapdragon_x65_5g_modem-rf_system_firmware qcm8550_firmware ipq8078a_firmware qcn9274 ipq8174 qrb5165m_firmware ipq5028 qrb5165_firmware qca6698aq qcn5052 wsa8840_firmware qca0000 qcf8001_firmware ipq6010 sc8380xp_firmware qcn6112_firmware qcn9074 qca8085 sdx65m wcd9340 qcn6132 qcn6224 qcn9013 wsa8845h snapdragon_ar2_gen_1_platform_firmware snapdragon_x75_5g_modem-rf_system wcd9395_firmware qca8081 qcf8000 qca6698aq_firmware ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware wcn685x-1_firmware immersive_home_3210_platform qca8085_firmware qam8775p_firmware qca9888_firmware qcn6122 wcd9385 qca6696_firmware ipq9008_firmware ipq9570 qcn5154_firmware qca6797aq ar8035 csr8811 wcd9390 qcc710_firmware qcn9100_firmware wsa8830_firmware ipq5010_firmware ipq8074a_firmware wsa8835_firmware qcn5022_firmware immersive_home_216_platform_firmware snapdragon_8_gen_2_mobile_platform_firmware wcn785x-1 qca8072 qca8337_firmware wcd9380_firmware ssg2125p qcn9000 ipq8072a qcf8000_firmware qca6554a ipq8076a_firmware qca6595 ipq8078 qca6564au qca8084 ipq8173 qcm8550 ipq9008 qcn9012 qcn5164 immersive_home_326_platform_firmware qcn6122_firmware qca6574 sxr1230p_firmware wsa8835 snapdragon_8\+_gen_2_mobile_platform_firmware csr8811_firmware qcn6274 wcd9380 ipq9554_firmware qcn5054_firmware qcn5154 qca8075_firmware ssg2125p_firmware qca6574a qcn5024 wcn685x-5_firmware qca9889 qcn6132_firmware sxr1230p qca9888 qca8072_firmware qcn9012_firmware qcn5052_firmware qcn9274_firmware qcc2076_firmware ipq8070a_firmware qfw7114_firmware wcn3980 wsa8845 qcc2073_firmware ipq6018_firmware ipq8076_firmware qca6574_firmware wcd9340_firmware pmp8074_firmware qcn6112 ipq8076 sxr2230p wsa8845_firmware qca6574a_firmware qcn5021 ipq6028 qcn5152 qcn9024 pmp8074 qrb5165m ipq9574_firmware wcn785x-5_firmware sc8380xp wcn3980_firmware immersive_home_3210_platform_firmware qca6391 qcn9100 qcn6274_firmware snapdragon_x65_5g_modem-rf_system ipq8078_firmware ipq9570_firmware qcn5054 qcn9070_firmware qrb5165 snapdragon_x75_5g_modem-rf_system_firmware wcn685x-5 ipq8070 ipq6028_firmware ipq8072a_firmware qcn9011 qca6797aq_firmware wcn785x-1_firmware qca6574au qca9889_firmware ipq9574 qcn5122 qcn9024_firmware ipq8174_firmware snapdragon_8\+_gen_2_mobile_platform wsa8832 ipq5332_firmware ipq5332 sm8550p immersive_home_326_platform snapdragon_ar2_gen_1_platform ipq6018 qcn5022 qcn9013_firmware qam8650p_firmware qcc710 ipq6010_firmware immersive_home_214_platform qca6595_firmware wcd9395 qca6696 qca6391_firmware immersive_home_214_platform_firmware qca4024 sm8550p_firmware sdx55 qca8075 qcn5021_firmware qcn9022_firmware qcn6024 qcn9022 qcc2076 wcd9390_firmware ipq8070a qcn9072_firmware ipq6000_firmware ssg2115p_firmware qcn9074_firmware qfw7124_firmware qam8255p qcc2073 ar8035_firmware Snapdragon

CWE ID-CWE-617

Reachable Assertion

CVE-2023-33081

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.70%

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-02 Aug, 2024 | 15:32

Buffer over-read in WLAN Firmware

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

Vendor-Qualcomm Technologies, Inc.

Product-qam8255p_firmware sc8180x-ab_firmware qca8337 qfw7124 ipq8173_firmware qca6431_firmware qam8775p qcf8001 qcn5124 qca4024_firmware wsa8840 immersive_home_318_platform_firmware sc8180x\+sdx55 ipq8078a ipq5028_firmware qca6595au_firmware wcn685x-1 wcn3998 qca6554a_firmware sc8180xp-ad ipq8076a qca8386_firmware qcn6024_firmware immersive_home_316_platform_firmware qca8084_firmware qca6574au_firmware qcn5164_firmware wcn3998_firmware qca8081_firmware qca6420 sc8180xp-af ipq8078a_firmware ipq5028 wsa8840_firmware qca6698aq sc8180xp-aa_firmware qca0000 qcf8001_firmware ipq6010 sc8380xp_firmware qca6430 sdx65m wcd9340 qcn6132 qcn9013 qca6436 qcf8000 qca6698aq_firmware wcn685x-1_firmware qca9888_firmware qam8775p_firmware qcn6122 wcd9341 qca6431 qca6696_firmware sc8180xp-ab_firmware ipq9008_firmware qca1062 sc8180x-ab qcn5154_firmware qca6797aq qcc710_firmware sm8250-ac_firmware wsa8830_firmware sd865_5g_firmware qcn5022_firmware immersive_home_216_platform_firmware wcn3991 qca8337_firmware wcd9380_firmware ssg2125p ipq8072a ipq8076a_firmware ipq8078 qca6564au qca8084 ipq8173 qcm8550 ipq9008 qcn5164 qca6574 csr8811_firmware sc8180xp-aa wcd9380 ipq9554_firmware qcn5024 sxr1230p sc8180xp-ad_firmware sc8180x-ac_firmware qca6430_firmware qcn5052_firmware qcn9012_firmware qcn9274_firmware qfw7114_firmware wsa8845 qcc2073_firmware ipq6018_firmware wcd9340_firmware wsa8815 qcn6112 qca6426_firmware sc8380xp ipq6028 sc8180x-ad qcn9024 ipq9574_firmware immersive_home_3210_platform_firmware qca6421_firmware snapdragon_xr2_5g_platform snapdragon_x65_5g_modem-rf_system ipq8078_firmware snapdragon_x75_5g_modem-rf_system_firmware qca6797aq_firmware wcn785x-1_firmware qcn9024_firmware ipq8174_firmware snapdragon_8\+_gen_2_mobile_platform wsa8832 sc8180xp-ac_firmware ipq5332 immersive_home_326_platform ipq6018 qcc710 immersive_home_214_platform qca6595_firmware wcd9395 qca6391_firmware immersive_home_214_platform_firmware qca4024 sm8550p_firmware sdx55 sm8250 ssg2115p_firmware qfw7124_firmware qam8255p ar8035_firmware qcn5024_firmware wcn3991_firmware wsa8830 qcn9070 sxr2230p_firmware qca1062_firmware qam8650p wcn785x-5 qcn6224_firmware qca8082 qcn9072 qca8386 qca6420_firmware qca6390_firmware ipq6000 ssg2115p qcn5152_firmware qca0000_firmware qca6426 qca6584au_firmware qcn9000_firmware snapdragon_8_gen_2_mobile_platform sm8250-ab ipq9554 wcd9385_firmware immersive_home_216_platform immersive_home_316_platform immersive_home_318_platform ipq8074a qcn5124_firmware qca1064 qca8082_firmware snapdragon_x55_5g_modem-rf_system qcn5122_firmware sdx55_firmware qca6595au qcn6023_firmware wsa8845h_firmware qfw7114 qca6436_firmware ipq5010 qca6564au_firmware qca6584au snapdragon_x65_5g_modem-rf_system_firmware qcm8550_firmware qcn9274 ipq8174 qcn5052 sm8250_firmware qcn6112_firmware sm8250-ac qcn9074 qca6421 qca8085 wsa8810_firmware qcn6224 wsa8845h snapdragon_ar2_gen_1_platform_firmware snapdragon_x75_5g_modem-rf_system wcd9395_firmware qca8081 ipq8071a qcn6023 sdx65m_firmware ipq8071a_firmware wcd9385 immersive_home_3210_platform qca8085_firmware sxr2130_firmware ipq9570 sc8180x-ac qca6390 ar8035 csr8811 aqt1000 sc8180x\+sdx55_firmware wcd9390 qcn9100_firmware ipq5010_firmware ipq8074a_firmware wsa8815_firmware wsa8835_firmware snapdragon_8_gen_2_mobile_platform_firmware wcn785x-1 qcn9000 qcf8000_firmware qca6554a sd865_5g qca6595 qcn9012 immersive_home_326_platform_firmware qcn6122_firmware wsa8835 sxr1230p_firmware snapdragon_8\+_gen_2_mobile_platform_firmware qcn6274 qcn5154 qca8075_firmware sc8180xp-ac qca6574a ssg2125p_firmware sxr2130 wcn685x-5_firmware qca9889 sc8180x-af qcn6132_firmware qca9888 qcc2076_firmware ipq8070a_firmware ipq8076_firmware qca6574_firmware sxr2230p ipq8076 wsa8845_firmware snapdragon_xr2_5g_platform_firmware qca6574a_firmware qcn5152 wcn785x-5_firmware snapdragon_x55_5g_modem-rf_system_firmware sm8250-ab_firmware qca6391 aqt1000_firmware qcn9100 qcn6274_firmware wsa8832_firmware ipq9570_firmware qcn9070_firmware wcn685x-5 ipq6028_firmware ipq8072a_firmware sc8180xp-af_firmware qca6574au qca9889_firmware ipq9574 qcn5122 wcd9341_firmware wsa8810 sc8180x-aa_firmware ipq5332_firmware sm8550p snapdragon_ar2_gen_1_platform qcn5022 qcn9013_firmware sc8180x-aa qam8650p_firmware ipq6010_firmware sc8180x-af_firmware qca1064_firmware qca6696 sc8180xp-ab qca8075 qcn9022_firmware wcd9390_firmware qcn6024 qcn9022 qcc2076 ipq8070a sc8180x-ad_firmware qcn9072_firmware ipq6000_firmware qcn9074_firmware qcc2073 Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-33040

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.70%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-03 Jun, 2025 | 14:46

Buffer Over-read in Data Modem

Transient DOS in Data Modem during DTLS handshake.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CVE-2019-14008

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.25% / 47.74%

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-05 Aug, 2024 | 00:05

Possible null pointer dereference issue in location assistance data processing due to missing null check on resources before using it in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9607, MDM9650, SDM660, SDM845, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware sm8150_firmware sxr2130_firmware sdm845 sdm660 sm8250_firmware mdm9607_firmware mdm9650 sm8250 mdm9150 mdm9607 mdm9650_firmware sm8150 sxr2130 sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

CWE ID-CWE-476

NULL Pointer Dereference

CVE-2019-14010

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.24% / 47.68%

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-05 Aug, 2024 | 00:05

The device may enter into error state when some tool or application gets failure at 1st buffer map all and performs 2nd buffer map which happens to be at same physical address in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

CWE ID-CWE-20

Improper Input Validation

CVE-2022-40513

Credits

Uncontrolled resource consumption in WLAN Firmware.

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs