Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-43067

Summary
Assigner-qualcomm
Assigner Org ID-2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
Published At-07 Apr, 2025 | 10:15
Updated At-26 Feb, 2026 | 18:28
Rejected At-
Credits

Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
â–¼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:qualcomm
Assigner Org ID:2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
Published At:07 Apr, 2025 | 10:15
Updated At:26 Feb, 2026 | 18:28
Rejected At:
â–¼CVE Numbering Authority (CNA)
Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.

Affected Products
Vendor
Qualcomm Technologies, Inc.Qualcomm, Inc.
Product
Snapdragon
Platforms
  • Snapdragon Auto
  • Snapdragon Compute
  • Snapdragon Consumer IOT
  • Snapdragon Industrial IOT
  • Snapdragon Mobile
  • Snapdragon Wearables
Default Status
unaffected
Versions
Affected
  • C-V2X 9150
  • FastConnect 6800
  • FastConnect 6900
  • FastConnect 7800
  • QAM8295P
  • QCA6391
  • QCA6426
  • QCA6436
  • QCA6574AU
  • QCA6696
  • QCN9074
  • QCS410
  • QCS610
  • QSM8250
  • Qualcomm Video Collaboration VC1 Platform
  • Qualcomm Video Collaboration VC3 Platform
  • SA6145P
  • SA6150P
  • SA6155P
  • SA8145P
  • SA8150P
  • SA8155P
  • SA8195P
  • SA8295P
  • SA8530P
  • SA8540P
  • SA9000P
  • SD865 5G
  • SDM429W
  • SDX55
  • Snapdragon 429 Mobile Platform
  • Snapdragon 8 Gen 1 Mobile Platform
  • Snapdragon 865 5G Mobile Platform
  • Snapdragon 865+ 5G Mobile Platform (SM8250-AB)
  • Snapdragon 870 5G Mobile Platform (SM8250-AC)
  • Snapdragon W5+ Gen 1 Wearable Platform
  • Snapdragon X55 5G Modem-RF System
  • Snapdragon XR2 5G Platform
  • SW5100
  • SW5100P
  • SXR2130
  • SXR2230P
  • SXR2250P
  • WCD9341
  • WCD9370
  • WCD9380
  • WCD9385
  • WCN3620
  • WCN3660B
  • WCN3680B
  • WCN3950
  • WCN3980
  • WCN3988
  • WSA8810
  • WSA8815
  • WSA8830
  • WSA8832
  • WSA8835
Problem Types
TypeCWE IDDescription
CWECWE-367CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition
Type: CWE
CWE ID: CWE-367
Description: CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition
Metrics
VersionBase scoreBase severityVector
3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html
N/A
Hyperlink: https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html
Resource: N/A
â–¼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
â–¼National Vulnerability Database (NVD)
nvd.nist.gov
Source:product-security@qualcomm.com
Published At:07 Apr, 2025 | 11:15
Updated At:20 Aug, 2025 | 21:01

Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Qualcomm Technologies, Inc.
qualcomm
>>qca6391_firmware>>-
cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6391>>-
cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6426_firmware>>-
cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6426>>-
cpe:2.3:h:qualcomm:qca6426:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6436_firmware>>-
cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6436>>-
cpe:2.3:h:qualcomm:qca6436:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6574au_firmware>>-
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6574au>>-
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6696_firmware>>-
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6696>>-
cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qcn9074_firmware>>-
cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qcn9074>>-
cpe:2.3:h:qualcomm:qcn9074:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qcs410_firmware>>-
cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qcs410>>-
cpe:2.3:h:qualcomm:qcs410:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qcs610_firmware>>-
cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qcs610>>-
cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qsm8250_firmware>>-
cpe:2.3:o:qualcomm:qsm8250_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qsm8250>>-
cpe:2.3:h:qualcomm:qsm8250:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>video_collaboration_vc1_platform_firmware>>-
cpe:2.3:o:qualcomm:video_collaboration_vc1_platform_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>video_collaboration_vc1_platform>>-
cpe:2.3:h:qualcomm:video_collaboration_vc1_platform:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>video_collaboration_vc3_platform_firmware>>-
cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>video_collaboration_vc3_platform>>-
cpe:2.3:h:qualcomm:video_collaboration_vc3_platform:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6145p_firmware>>-
cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6145p>>-
cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6150p_firmware>>-
cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6150p>>-
cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6155p_firmware>>-
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6155p>>-
cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8145p_firmware>>-
cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8145p>>-
cpe:2.3:h:qualcomm:sa8145p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8150p_firmware>>-
cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8150p>>-
cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8155p_firmware>>-
cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8155p>>-
cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8195p_firmware>>-
cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8195p>>-
cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8295p_firmware>>-
cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8295p>>-
cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8530p_firmware>>-
cpe:2.3:o:qualcomm:sa8530p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8530p>>-
cpe:2.3:h:qualcomm:sa8530p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8540p_firmware>>-
cpe:2.3:o:qualcomm:sa8540p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8540p>>-
cpe:2.3:h:qualcomm:sa8540p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa9000p_firmware>>-
cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa9000p>>-
cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sd865_5g_firmware>>-
cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sd865_5g>>-
cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sdm429w_firmware>>-
cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sdm429w>>-
cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sdx55_firmware>>-
cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sdx55>>-
cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-367Primaryproduct-security@qualcomm.com
CWE ID: CWE-367
Type: Primary
Source: product-security@qualcomm.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.htmlproduct-security@qualcomm.com
Vendor Advisory
Hyperlink: https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html
Source: product-security@qualcomm.com
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

942Records found
CVE-2019-2339
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.09% / 26.11%
||
7 Day CHG~0.00%
Published-21 Nov, 2019 | 14:38
Updated-04 Aug, 2024 | 18:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm850_firmwaresdm670_firmwareqcs404sdx24_firmwaresm8150_firmwaresxr2130_firmwaresda845_firmwaresdm845mdm9205_firmwaresdx24mdm9205qcs404_firmwareqcs605sdx55sm7150_firmwaresm6150_firmwaresdm710sm6150sm8150sdm850sdm710_firmwaresxr1130_firmwaresdx55_firmwaresm7150sxr1130sdm670sxr2130qcs605_firmwaresda845sdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2022-25717
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.04% / 11.59%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 04:56
Updated-09 Apr, 2025 | 19:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use-After-Free Issue in Display

Memory corruption in display due to double free while allocating frame buffer memory

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-mdm9150_firmwareqca8337_firmwaresda429w_firmwarewcn3990qcs610sdm429wmsm8996au_firmwareqca8337qca6564aumdm9650msm8996ausdm429w_firmwarewcn3950_firmwaremdm9250qca6420_firmwarequalcomm215qcs410wcd9370qca6574awcn3990_firmwareqca6430_firmwarewcd9335_firmwarewcn3980wcn3998wcn3950wcd9326_firmwaresa515mwcd9340_firmwarewcn3660bsd855wsa8815mdm9650_firmwarewcn3660b_firmwareqca6574a_firmwareqca6574au_firmwaresdx55_firmwarewcn3680b_firmwaresd835wcn3998_firmwarewcn3980_firmwaresdxr1_firmwarewcn3610_firmwareqca6420qca6391aqt1000_firmwareqca6564au_firmwareqcs8155sa515m_firmwaresd429qca6430qca6574auqcn9074sd205sd429_firmwaresa8155p_firmwaresd205_firmwarewcd9340qca6564a_firmwarewsa8810_firmwarequalcomm215_firmwarewcd9341_firmwarewsa8810wcd9326wcd9335sd210_firmwareqcs610_firmwaremdm9150wcn3680bsd835_firmwaremdm9250_firmwarewcd9341sdxr1apq8096auqca6391_firmwarewcd9370_firmwareaqt1000sdx55apq8096au_firmwaresa8155psda429wsd210sd855_firmwarewcn3620_firmwarewsa8815_firmwarewcn3620qcs8155_firmwareqcn9074_firmwareqcs410_firmwareqca6564awcn3610Snapdragon
CWE ID-CWE-415
Double Free
CVE-2022-25724
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.12% / 30.91%
||
7 Day CHG~0.00%
Published-15 Nov, 2022 | 00:00
Updated-22 Apr, 2025 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwarewcn3615_firmwaremsm8996ausd429_firmwareqca6595au_firmwarequalcomm215_firmwaresd730qca6310apq8009mdm9607qca6696qca6421wcn7850qsm8250_firmwareqca6564ausdx24wcn3660bqca6426_firmwaresd632_firmwaresd720gsa6150psd460sd710_firmwaresd205_firmwaremsm8996au_firmwareapq8056sdx24_firmwarewsa8830wsa8815wcn3680bqca6430wcn3620_firmwaresd855qcs6490_firmwarewcd9340sdx55_firmwaresxr2150p_firmwaresdxr2_5g_firmwaremsm8976sg_firmwaresa4155p_firmwaremdm9650sd765g_firmwareqca6574amsm8108_firmwaresd865_5g_firmwareapq8017_firmwareqcm6125_firmwaresdm429w_firmwaresd835_firmwarewcn6750sa8295p_firmwaresm7325pmsm8917_firmwaresd_636_firmwaresd695_firmwareqcc5100sd_675qca6335sd625_firmwaremsm8108qcs405qca6595qca6431_firmwaremsm8208csra6640sd480_firmwareapq8064au_firmwareqca6430_firmwareqca8081sm7315_firmwaresm7325p_firmwareqca6584auapq8009wsd870mdm9150qca9367qca6390_firmwareqcn9024_firmwareqcn9011_firmwaresa6155_firmwarewcn6855qca6584_firmwareqcx315_firmwarewcn3910sd870_firmwareqcm6490_firmwaresm6250qcs8155sdm630_firmwareqca6431qca6595auwcd9370sd821_firmwareqcs4290_firmwaresd888_firmwarewcn3980sm4125_firmwaresd439_firmwaresm7315sd765_firmwaresd720g_firmwaresd765gsd670mdm9150_firmwaresdx55mmsm8208_firmwaremsm8917qam8295psd450wcn6850_firmwarewcn3660sm6250pwsa8810_firmwarewsa8815_firmwarewcn3991_firmwaresa8150psd625wcn6740msm8608_firmwareqca6436apq8064aumsm8952_firmwaresa8155psdxr1wsa8810msm8909wsdm630sw5100p_firmwareaqt1000_firmwareqcn9012wsa8835_firmwarewcd9335_firmwaresm7250p_firmwareapq8009_firmwareqca6391qcn9024wcn3998_firmwarecsra6620wcn6851sd778g_firmwarewcd9370_firmwaresd675qca6420_firmwaresd439wcn3660_firmwareqcx315qcc5100_firmwaresd210_firmwareqcm6125apq8052_firmwareqca4020_firmwaresdx12sd660csrb31024_firmwaresa4150p_firmwaresdm429wsdx20qcs610qualcomm215apq8052qca6391_firmwaresd205wcd9326_firmwareqcn9012_firmwaresm7250psa8155p_firmwarecsra6620_firmwarewcn3610sdx20_firmwaresa6145pwcn3910_firmwareqrb5165_firmwaremsm8209apq8017wcd9375sd750g_firmwaremsm8976_firmwareqca6696_firmwaresm6250p_firmwaresxr2150psd865_5gqca9377wcn3990_firmwarewcn3950_firmwarewcn3988sd778gwcd9371_firmwarewcn3615msm8976sd750gsd768g_firmwareqcs605msm8952wcn7851qca6310_firmwaresd710qcs8155_firmwareqca6436_firmwaresa8195p_firmwareqca4020qca9367_firmwaresd_636wcd9341_firmwaresd821sd632wcd9340_firmwaresd_675_firmwareqca6174a_firmwareqca6564a_firmwaresd855_firmwaresd662_firmwarewcd9371mdm9650_firmwaresdx50mqcs405_firmwareqcn6024_firmwareqcs6490sdx55sd460_firmwaremsm8956mdm9628wcn3610_firmwaresa6155qcm4290_firmwaremsm8976sgsd450_firmwaresd820wcn3660b_firmwaresm4375msm8909w_firmwaresdx20m_firmwarewcd9360_firmwareqrb5165m_firmwaresdw2500_firmwaresdw2500sa6145p_firmwaresd626sd768gwcn6740_firmwarewcn6856sd626_firmwaresm4125sda429w_firmwaresdx50m_firmwareapq8009w_firmwaresa6155pqca6390sa8150p_firmwaresd480wcd9330wcn7851_firmwaresa8145p_firmwaresw5100wcn6850sa8145psa415mwcn3950msm8608qca6320_firmwareqca6584au_firmwareqcm6490qcn6024qca6174awcd9335wcn3999sd835sd670_firmwarewcn3680b_firmwareqca6595_firmwareqrb5165nqca6421_firmwareqrb5165qca6574au_firmwaresd662qrb5165n_firmwaremdm9250_firmwareqam8295p_firmwareqca6564_firmwaresa8295pqcs610_firmwaremsm8956_firmwareqca6174qcm2290_firmwarewcd9380ar8031qcm4290wcn3680mdm9628_firmwaresd660_firmwaresd730_firmwaresd695qca6174_firmwarewcd9375_firmwaresd888sa6150p_firmwarear8035_firmwarewcn6856_firmwareaqt1000sdx12_firmwarear8035wcn6855_firmwareqsm8250qca6420wcd9360sd780g_firmwarewcn3680_firmwareqcm2290sdx65_firmwaremdm9250qcn9011sa515msd845_firmwaremdm9206sdxr1_firmwaresa515m_firmwaremdm9607_firmwarewcn3990apq8076sd429apq8076_firmwaresd690_5gqca8081_firmwarewsa8835wcn3998ar8031_firmwareapq8056_firmwareqca8337_firmwaremdm9206_firmwareqcs2290qrb5165msd820_firmwarewcd9385sd678qca6574auwcn7850_firmwaresdx65wcd9385_firmwareapq8096auwcn6750_firmwareqcs410_firmwaresd210sd680sd888_5gsd678_firmwareqca9379wcn3999_firmwareqcs6125sm4375_firmwarewcn3991qca6574csra6640_firmwareqca6574_firmwaresa415m_firmwareqca6564asdx20msa8195psd675_firmwareqca6574a_firmwaresda429wsa8155_firmwarewsa8830_firmwaresd888_5g_firmwareqca6320qca8337sd_8_gen1_5g_firmwaresm6250_firmwaresdxr2_5gwcd9341wcn3980_firmwareqcs2290_firmwarewcn6851_firmwarewcd9326sd680_firmwareqca9379_firmwaresa6155p_firmwaresa4150pqca9377_firmwareapq8096au_firmwaresw5100_firmwareqca6584sd780gqca6564au_firmwarecsrb31024qca6426qca6335_firmwaresdx55m_firmwareqcs6125_firmwaresd690_5g_firmwaresm8475sa8155wcn3620sd765qcs605_firmwareqca6564wcd9330_firmwarewcn3988_firmwareqcs4290msm8209_firmwaresa4155psw5100psd845qcs410Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2018-5852
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.06% / 17.20%
||
7 Day CHG~0.00%
Published-26 Nov, 2024 | 13:56
Updated-09 Jan, 2025 | 19:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in IPA

An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat'

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_615sd_820sd_652_firmwaremsm8909w_firmwaresd_210_firmwaresd_625sd_616_firmwaresd_810sd_450mdm9640sd_425sd_210sd_820asd_652sd_625_firmwaresd_415_firmwaresd_205mdm9650_firmwaremdm9206mdm9650sd_650sd_820_firmwaresd_835sd_616mdm9206_firmwaresd_810_firmwaresd_845sd_212_firmwaresd_820a_firmwaresd_835_firmwaresd_450_firmwaresd_617_firmwaresd_617mdm9640_firmwaresd_205_firmwaresd_212sd_425_firmwaremsm8909wmdm9607sd_415sd_650_firmwaremdm9607_firmwaresd_430sd_615_firmwaresd_430_firmwaresd_845_firmwareSnapdragonsd_820a_firmwaresd_835_firmwaresd_425_firmwaremdm9607_firmwaremsm8909w_firmwaresd_810_firmwaremdm9206_firmwaresd_450_firmwaremdm9650_firmwaresd_625_firmwaresd_845_firmwaresd_430_firmwaresd_617_firmwaresd_820_firmwaremdm9640_firmware
CWE ID-CWE-126
Buffer Over-read
CWE ID-CWE-191
Integer Underflow (Wrap or Wraparound)
CVE-2026-24082
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.00%
||
7 Day CHG~0.00%
Published-04 May, 2026 | 16:43
Updated-12 May, 2026 | 19:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Automotive GPU

Memory Corruption when copying data from a freed source while executing performance counter deselect operation.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-snapdragon_460_mobile_firmwareqrb5165mflight_rb5_5gqca6698ausnapdragon_8_gen_2_mobilesa7775pqxm1083wsa8845h_firmwareqcn9012_firmwarewcd9378wsa8832_firmwarevideo_collaboration_vc3_platformfastconnect_6700csra6640wcd9395_firmwarevideo_collaboration_vc1_platformsm8650q_firmwaresnapdragon_x75_5g_modem-rfg3x_gen_2sa7775p_firmwaredragonwing_x100_accelerator_cardqam8255pqca6698au_firmwarelemans_au_lgitqxm1083_firmwareqam8295p_firmwaredragonwing_qru100wsa8840_firmwarewcn7861_firmwareqca8695au_firmwaresa4155pqamsrv1hqamsrv1mfwa_gen_3_ultra_firmwareqca2066qca6595au_firmwaresnapdragon_auto_5g_modem-rfsa4155p_firmwareqca6584ausnapdragon_680_4g_mobilerobotics_rb5_firmwarelemansau_firmwareqpa1083bdqxm1094_firmwareqca6174a_firmwaresa8150p_firmwareqca6574a_firmwaresnapdragon_480_5g_mobilear8031milos_iot_firmwarewcn3980milosqdu1000_firmwarelemans_au_lgit_firmwareqxm1095wcn6650wcn6650_firmwareqcs8550qdx1011sm8635_firmwaresa8770p_firmwarewcn3910_firmwarewcn3950_firmwarewsa8810_firmwarewsa8832qca9377sd662srv1hqcm4325qdu1210_firmwaresar1165p_firmwarecsra6620fwa_gen_3_ultrawcn7881_firmwareqcs4290fastconnect_6700_firmwaremdm9628snapdragon_x72_5g_modem-rf_firmwareqrb5165n_firmwareqca6564a_firmwaresnapdragon_4_gen_1_mobileqfw7124qcc710snapdragon_8\+_gen_2_mobileg3x_gen_2_firmwaresnapdragon_480_5g_mobile_firmwareqca6174asm7550_firmwareqam8255p_firmwareqcn9012qln1083bdqdu1110snapdragon_695_5g_mobileqca6797aq_firmwarewcn7881video_collaboration_vc3_platform_firmwaresa8620pwcn3980_firmwarefastconnect_6200_firmwareqca6574_firmwarewsa8830_firmwarewcd9370_firmwaresrv1m_firmwaresw5100pqca6696_firmwareqca6698aqqcm5430sxr2330p_firmwareqru1032qxm1096_firmwarekalpeni_firmwaresnapdragon_6_gen_4_mobileqca6564auqca6564asa6145pcsra6620_firmwaremdm9250_firmwareqxm1095_firmwarewcd9340_firmwareqca2066_firmwareqcs8550_firmwaresnapdragon_460_mobilear8035qfw7114_firmwarefastconnect_6900sa7255pqca8081_firmwareqca6391_firmwaresa8145p_firmwareqcn9011_firmwareqca6574qamsrv1m_firmwareqca6574asa6155psa9000p_firmwareqcm2290_firmwareqcm2290ar8031_firmwaresm6650psm7635p_firmwarefastconnect_7800sa8295p_firmwarewcd9335pandeirosm7525sw5100_firmwaresa8155p_firmwareqca6391qca6584au_firmwarewsa8835wcd9340qca6688aq_firmwaresm7675snapdragon_6_gen_4_mobile_firmwaresxr2330psm7525_firmwareqru1032_firmwareqcn6224_firmwareqamsrv1h_firmwareqdx1011_firmwaresa8620p_firmwarewcd9371qcn9011qca8081mdm9250snapdragon_662_mobile_firmwaresnapdragon_x32_5g_modem-rf_firmwareqxm1093_firmwareqca6595fastconnect_7800_firmwarefastconnect_6200sa8770pqcn6274video_collaboration_vc1_platform_firmwaresd662_firmwaresm6650p_firmwaresa4150p_firmwareqcs6690sa6145p_firmwareqxm1086_firmwarewcd9371_firmwaresnapdragon_x35_5g_modem-rf_firmwareqdx1010snapdragon_auto_5g_modem-rf_gen_2qxm1086wcn6450_firmwareqca9377_firmwarefastconnect_6900_firmwaresmart_audio_400qxm1093qep8111_firmwarewsa8810wcd9375video_collaboration_vc5_platformsxr2350p_firmwarewcd9370ar8035_firmwareflight_rb5_5g_firmwareqrb5165nsa8255pqca8337qfw7124_firmwaresnapdragon_8\+_gen_2_mobile_firmwareqcm6490qdu1110_firmwareqdu1210wcn3988sm8650qsw5100p_firmwarexrv7209_firmwaresnapdragon_ar1_gen_1_firmwareqcs2290qxm1096srv1h_firmwaresnapdragon_685_4g_mobilesw5100robotics_rb5wsa8815sxr2350psnapdragon_ar1_gen_1qpa1083bd_firmwarelemansausnapdragon_ar1\+_gen_1_firmwaresa8295pqcm4325_firmwareqcn6274_firmwaresnapdragon_x32_5g_modem-rfqca6678aqsnapdragon_7s_gen_3_mobilesa8195p_firmwareqca6698aq_firmwareqpa1086bdsm6225p_firmwaresmart_audio_400_firmwarewcd9395qca6797aqsm7550p_firmwaredragonwing_qru100_firmwaresa6150pqcm6125_firmwaresnapdragon_695_5g_mobile_firmwareqca6595_firmwaremilos_iotsm7550wcn7860sar1165pkalpenig1_gen_1qdx1010_firmwaresnapdragon_680_4g_mobile_firmwarewsa8830sa8195pwcd9380qcm6125wsa8845_firmwaresa6150p_firmwarewcd9375_firmwaresnapdragon_8_gen_2_mobile_firmwaresnapdragon_ar1\+_gen_1wcn3950qln1086bd_firmwaresm8635p_firmwareqln1083bd_firmwareqcm5430_firmwarewsa8845hsm8550p_firmwaresm7635pvideo_collaboration_vc5_platform_firmwaresrv1mwcn7861snapdragon_4_gen_1_mobile_firmwareqca8337_firmwareqdu1000qpa1086bd_firmwaresm8635csra6640_firmwareqca6595ausnapdragon_x75_5g_modem-rf_firmwareqcc710_firmwareqca6678aq_firmwarewcn6450sa9000psnapdragon_662_mobilesa8150psa4150pdragonwing_x100_accelerator_card_firmwareqca9367_firmwarerobotics_rb2qca6688aqqca9367sa8155pmilos_firmwarewcd9385_firmwarewcd9390snapdragon_8_gen_3_mobileqln1086bdsm7675p_firmwareqca6564au_firmwareqcn6224sm7675_firmwarexrv9209wcn6755qca6574ausm7550psnapdragon_8_gen_3_mobile_firmwaresm6225pwcd9378_firmwareqcs6690_firmwaresnapdragon_x35_5g_modem-rfsm7675pqcs2290_firmwaresnapdragon_auto_5g_modem-rf_firmwarexrv9209_firmwaremdm9628_firmwarewcn3988_firmwarewcn3910qcm6490_firmwareqep8111wcn7860_firmwaresnapdragon_685_4g_mobile_firmwaresa8255p_firmwaresnapdragon_480\+_5g_mobile_firmwareqrb5165m_firmwarewcd9390_firmwareqca6696sm8635psnapdragon_x72_5g_modem-rfsa8145psnapdragon_7s_gen_3_mobile_firmwareqca8695auxrv7209wsa8815_firmwareqam8295pwcn6755_firmwaresnapdragon_auto_5g_modem-rf_gen_2_firmwarewsa8835_firmwarerobotics_rb2_firmwarewcd9335_firmwaresnapdragon_480\+_5g_mobilewcd9380_firmwarepandeiro_firmwareqxm1094qca6574au_firmwaresa7255p_firmwaresm8550pg1_gen_1_firmwareqcs4290_firmwareqfw7114wcd9385sa6155p_firmwarewsa8845wsa8840Snapdragon
CWE ID-CWE-416
Use After Free
CVE-2026-21371
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.43%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 15:33
Updated-08 Apr, 2026 | 21:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in WinBlast Driver

Memory Corruption when retrieving output buffer with insufficient size validation.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_6800wsa8845h_firmwaresnapdragon_8cx_gen_3_compute_platformqcm6490x2000086x2000092xg101002_firmwaresnapdragon_8cx_gen_2_5g_compute_platformqca0000sc8380xp_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_firmwarewsa8840video_collaboration_vc3_platformqca6391_firmwarewcd9341_firmwarevideo_collaboration_vc3_platform_firmwarefastconnect_6800_firmwarexg101032fastconnect_6900snapdragon_8cx_compute_platformsc8380xpsnapdragon_662_mobile_platformx2000086_firmwarewsa8815_firmwarewcn3988fastconnect_6200x2000094_firmwarewsa8830_firmwarewcd9385_firmwareqca6391x2000092_firmwarexg101039_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\"poipu_pro\"_firmwareaqt1000fastconnect_7800qcm5430snapdragon_8c_compute_platform_\(sc8180xp-ad\)snapdragon_8c_compute_platform_firmwarewcd9375qcm6490_firmwareqca0000_firmwarewcd9370_firmwarewcn3988_firmwaresm6250wcd9380_firmwareqcm5430_firmwarewcn3950_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewsa8840_firmwaresnapdragon_8cx_compute_platform_firmwarefastconnect_7800_firmwarex2000090_firmwarewsa8830snapdragon_8cx_compute_platform_\"poipu_pro\"_firmwaresnapdragon_7c_compute_platformwsa8845wcd9380cologneqca6420snapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwareqca6430_firmwareaqt1000_firmwaresnapdragon_460_mobile_platformfastconnect_6900_firmwaresnapdragon_7c\+_gen_3_computewcd9378c_firmwarecologne_firmwarewsa8835wcd9370sm6250_firmwarex2000077wcd9375_firmwarex2000077_firmwarex2000094snapdragon_662_mobile_platform_firmwarewcd9340_firmwarewsa8845_firmwaresnapdragon_7c_compute_platform_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\"poipu_pro\"xg101032_firmwarewcd9378cqca6430fastconnect_6200_firmwaresnapdragon_460_mobile_platform_firmwarewsa8835_firmwaresnapdragon_8cx_compute_platform_\"poipu_pro\"xg101039x2000090fastconnect_6700snapdragon_7c_gen_2_compute_platform_firmwarewcd9340snapdragon_8cx_gen_3_compute_platform_firmwaresnapdragon_7c_gen_2_compute_platformfastconnect_6700_firmwarewcd9341wcn3950wcd9385qca6420_firmwarewsa8815wsa8810xg101002wsa8845hwsa8810_firmwaresnapdragon_8c_compute_platformSnapdragon
CWE ID-CWE-126
Buffer Over-read
CVE-2026-21372
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.43%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 15:33
Updated-08 Apr, 2026 | 21:07
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Heap-Based Buffer Overflow in Power Management IC

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845h_firmwareqcm6490x2000086x2000092xg101002_firmwaresnapdragon_460_mobile_platformfastconnect_6900_firmwaresnapdragon_7c\+_gen_3_computewcd9378c_firmwarewsa8840wsa8845hvideo_collaboration_vc3_platformcologne_firmwarevideo_collaboration_vc3_platform_firmwarewcd9370xg101032snapdragon_662_mobile_platformx2000077wcd9375_firmwarex2000086_firmwarewcn3988x2000077_firmwarex2000094_firmwarex2000094snapdragon_662_mobile_platform_firmwarewsa8845_firmwarewcd9385_firmwarexg101032_firmwarewcd9378cx2000092_firmwarexg101039_firmwaresnapdragon_460_mobile_platform_firmwarefastconnect_7800fastconnect_6700qcm5430x2000090xg101039wcd9375fastconnect_6700_firmwareqcm6490_firmwarewcn3950wcd9370_firmwarewcn3988_firmwarewcd9385wcd9380_firmwareqcm5430_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewcn3950_firmwarewsa8840_firmwarefastconnect_7800_firmwarex2000090_firmwarexg101002wsa8845wcd9380fastconnect_6900cologneSnapdragon
CWE ID-CWE-122
Heap-based Buffer Overflow
CVE-2026-21374
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.43%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 15:33
Updated-08 Apr, 2026 | 21:07
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in Camera

Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_6800wsa8845h_firmwaresnapdragon_8cx_gen_3_compute_platformqcm6490x2000086x2000092xg101002_firmwaresnapdragon_8cx_gen_2_5g_compute_platformqca0000sc8380xp_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_firmwarewsa8840video_collaboration_vc3_platformqca6391_firmwarewcd9341_firmwarevideo_collaboration_vc3_platform_firmwaresnapdragon_ar1_gen_1_platformfastconnect_6800_firmwarexg101032fastconnect_6900snapdragon_8cx_compute_platformsc8380xpsnapdragon_662_mobile_platformx2000086_firmwarewsa8815_firmwarewcn3988fastconnect_6200x2000094_firmwarewsa8830_firmwarewcd9385_firmwaresnapdragon_ar1_gen_1_platform_firmwareqca6391x2000092_firmwarexg101039_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\"poipu_pro\"_firmwareaqt1000fastconnect_7800qcm5430snapdragon_8c_compute_platform_\(sc8180xp-ad\)snapdragon_8c_compute_platform_firmwarewsa8832_firmwarewcd9375qcm6490_firmwareqca0000_firmwarewcd9370_firmwarewcn3988_firmwaresm6250wcd9380_firmwareqcm5430_firmwarewcn3950_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewsa8840_firmwaresnapdragon_8cx_compute_platform_firmwarefastconnect_7800_firmwarex2000090_firmwarewsa8830snapdragon_8cx_compute_platform_\"poipu_pro\"_firmwaresnapdragon_7c_compute_platformwsa8845wcd9380cologneqca6420snapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwareqca6430_firmwareaqt1000_firmwaresnapdragon_460_mobile_platformfastconnect_6900_firmwaresnapdragon_7c\+_gen_3_computewcd9378c_firmwarecologne_firmwarewsa8835wcd9370sm6250_firmwarex2000077wcd9375_firmwarex2000077_firmwarex2000094snapdragon_662_mobile_platform_firmwarewcd9340_firmwarewsa8845_firmwaresnapdragon_7c_compute_platform_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\"poipu_pro\"xg101032_firmwarewcd9378cqca6430fastconnect_6200_firmwaresnapdragon_460_mobile_platform_firmwarewsa8835_firmwarewsa8832snapdragon_8cx_compute_platform_\"poipu_pro\"xg101039x2000090fastconnect_6700snapdragon_7c_gen_2_compute_platform_firmwarewcd9340snapdragon_8cx_gen_3_compute_platform_firmwaresnapdragon_7c_gen_2_compute_platformfastconnect_6700_firmwarewcd9341wcn3950wcd9385qca6420_firmwarewsa8815xg101002wsa8810wsa8845hwsa8810_firmwaresnapdragon_8c_compute_platformSnapdragon
CWE ID-CWE-126
Buffer Over-read
CVE-2026-21385
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.23% / 45.40%
||
7 Day CHG~0.00%
Published-02 Mar, 2026 | 16:53
Updated-04 Mar, 2026 | 18:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2026-03-24||Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Integer Overflow or Wraparound in Graphics

Memory corruption while using alignments for memory allocation.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcs4490snapdragon_ar1_gen_1_platform_firmwarewcn7861_firmwarepandeirowcn6650snapdragon_x5_lte_modem_firmwareqpa1083bdar8031fastconnect_6200_firmwaresnapdragon_660_mobile_platform_firmwarerobotics_rb5_platform_firmwarecsra6640_firmwaresa8195pqamsrv1hsm7550p_firmwaresnapdragon_ar1\+_gen_1_platform_firmwareqcm4490_firmwaresnapdragon_x5_lte_modempandeiro_firmwareqxm1086snapdragon_x55_5g_modem-rf_systemg2_gen_15g_fixed_wireless_access_platform_firmwareqcm6125_firmwaresar1250pqcs4290snapdragon_782g_mobile_platform_firmwaresnapdragon_865_5g_mobile_platform_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarerobotics_rb2_platformsxr2330psm8635psar2130p_firmwaresa8155qca8337c-v2x_9150_firmwaresnapdragon_8_gen_2_mobile_platformsnapdragon_460_mobile_platform_firmwareqcm2290palawan25_firmwareiq-8275_firmwaresa8770p_firmwarefastconnect_6800snapdragon_4_gen_1_mobile_platform_firmwaresnapdragon_480\+_5g_mobile_platformqca8337_firmwaresxr2350p_firmwaresnapdragon_6_gen_3_mobile_platform_firmwaresnapdragon_820amsa6155p_firmwaresa8145psm6225p_firmwareqrb5165nsm7675sa6150p_firmwaresa7255pflight_rb5_5g_platformwcn3620_firmwarewcn3910smart_display_200_platform_firmwaresa7255p_firmwaresar1165pwcn3680bsd865_5g_firmwarewcd9335sc8380xpqualcomm_215_mobile_platform_firmwaresnapdragon_8_gen_1_mobile_platformwcd9330sdm429wwcn3680b_firmwaresnapdragon_888\+_5g_mobile_platformsw5100snapdragon_870_5g_mobile_platformflight_rb5_5g_platform_firmwaresxr2350pwcn3620sa6155psnapdragon_685_4g_mobile_platformsnapdragon_4_gen_1_mobile_platformsnapdragon_888_5g_mobile_platformwcd9378sdx61_firmwaresa8295pqca6584ausa8295p_firmwareqcm6125qca6391snapdragon_480\+_5g_mobile_platform_firmwareqam8295pwcn3988iq-8300snapdragon_x65_5g_modem-rf_systemsda660wcd9378_firmwarewcd9371qln1086bdfastconnect_6900_firmwareqca6174aqca6595qxm1093_firmwarewcn6450_firmwaresnapdragon_xr2\+_gen_1_platformsnapdragon_685_4g_mobile_platform_firmwarevideo_collaboration_vc3_platformqca6678aqwcd9370_firmwareqcs8550_firmwaresnapdragon_820am_firmwaresnapdragon_662_mobile_platform_firmwareqrb5165mwcn6755apq8098_firmwaresa8145p_firmwarewcd9326qcm5430sxr2250p_firmwareqcn9024_firmwaremonaco_iotsm8750p_firmwaresnapdragon_865_5g_mobile_platformwcn7860_firmwaresnapdragon_429_mobile_platform_firmwareqca6574asnapdragon_480_5g_mobile_platform_firmwaresa8155_firmwarecsra6620_firmwaresa8155pqpa1086bdiq-615qcn9011sdx61netrani_firmwarefastconnect_6200lemans_au_lgit_firmwarewsa8835_firmwaresnapdragon_6_gen_3_mobile_platformcsra6620sa4155pqca9377_firmwarewcn3990_firmwarewcd9360sar2130pwcd9326_firmwareqca6797aq_firmwarevision_intelligence_100_platform_firmwareqxm1086_firmwarewcn3990iq-8300_firmwareqln1086bd_firmwarenetranisnapdragon_6_gen_4_mobile_platform_firmwarewcd9341qcn9012snapdragon_625_mobile_platform_firmwaresa6155sw5100_firmwaresa4155p_firmwaresa8770par8035sm8635qrb5165n_firmwaresnapdragon_8\+_gen_2_mobile_platform_firmwarewcn6650_firmwaresc8380xp_firmwaresnapdragon_x53_5g_modem-rf_system_firmwaresrv1mwcn7860qcs4290_firmwareqxm1096_firmwareqca2066qca2066_firmwarewcd9380_firmwaremilos_firmwaresm7635p_firmwarewcd9371_firmwarewsa8815snapdragon_888\+_5g_mobile_platform_firmwaresnapdragon_460_mobile_platformwcd9330_firmwarewsa8845sd626wsa8845_firmwareiq-9100qam8255p_firmwaresnapdragon_695_5g_mobile_platformwsa8835sa8255psnapdragon_x55_5g_modem-rf_system_firmwareqca9367_firmwaresmart_display_200_platformwsa8840_firmwaresnapdragon_8_gen_1wcn6755_firmwarewsa8830snapdragon_8_gen_3_mobile_platform_firmwareqpa1083bd_firmwarear8035_firmwaresnapdragon_7s_gen_3_mobile_platform_firmwarewcn3950_firmwaresm8635p_firmwaresd626_firmwarewcd9360_firmwareqxm1094qca8695auwcd9335_firmwaresa6150psnapdragon_820_automotive_platformsd662g1_gen_1wsa8840qxm1083snapdragon_auto_5g_modem-rfsa8195p_firmwaresa6155_firmwaresm7550_firmwarewcd9385snapdragon_x12_lte_modemsnapdragon_w5\+_gen_1_wearable_platform_firmwaresnapdragon_8_elite_firmwaresnapdragon_8\+_gen_2_mobile_platformsm8475pwcn7881sm7435_firmwaremdm9628vision_intelligence_200_platformsar1165p_firmwaresw6100video_collaboration_vc5_platformsnapdragon_8_gen_2_mobile_platform_firmwareqcm4325_firmwarewcd9390sdm429w_firmwarewcd9395_firmwarerobotics_rb2_platform_firmwareqamsrv1h_firmwaresa4150pwsa8810wcn3660b_firmwareqca8081_firmwarewcn7880fastconnect_6700_firmwaresmart_audio_400_platformpalawan25qamsrv1m_firmwaresnapdragon_8_elitemdm9250_firmwareqca6564au_firmwarewcn3980_firmwaresnapdragon_626_mobile_platform_firmwaresxr2230pqcs4490_firmwaresnapdragon_7_gen_1_mobile_platform_firmwaresnapdragon_429_mobile_platformsm7635pqcm4325sm8550p_firmwaresa9000p_firmwaresm8650qqca6678aq_firmwareqxm1096video_collaboration_vc3_platform_firmwarefastconnect_6900mdm9628_firmwaresnapdragon_7\+_gen_2_mobile_platformsw5100pwcd9390_firmwaremdm9250snapdragon_6_gen_4_mobile_platformsmart_audio_400_platform_firmwarelemansau_firmwaresnapdragon_6_gen_1_mobile_platformvision_intelligence_400_platform_firmwaresnapdragon_8\+_gen_1_mobile_platform_firmwareiq-9100_firmwaresnapdragon_680_4g_mobile_platformsnapdragon_6_gen_1_mobile_platform_firmwareqcn6024_firmwaresa8620psd662_firmwaresm7675pqpa1086bd_firmwaresd865_5gqmp1000snapdragon_7c\+_gen_3_compute_firmwaresnapdragon_865\+_5g_mobile_platformqcm5430_firmwaresnapdragon_782g_mobile_platformsm6650pqmp1000_firmwaresnapdragon_xr2_5g_platform_firmwaresar2230p_firmwaresa8150pwcn7861snapdragon_888_5g_mobile_platform_firmwarevideo_collaboration_vc1_platformqam8255pqcn9024wcn3615_firmwaresnapdragon_480_5g_mobile_platformsnapdragon_xr2\+_gen_1_platform_firmwaresm6225psm7550snapdragon_690_5g_mobile_platform_firmwareg2_gen_1_firmwareqcm4490sw6100_firmwaresnapdragon_778g\+_5g_mobile_platform_firmwaresrv1m_firmwareiq-9075qca6688aq_firmwaresa8255p_firmwaresxr2250pwsa8810_firmwaresm8750porne_firmwaresm7325pqcs2290_firmwaresnapdragon_7_gen_1_mobile_platformthemistosrv1h_firmwaresnapdragon_8\+_gen_1_mobile_platformwcn7881_firmwareapq8098snapdragon_4_gen_2_mobile_platformqcs2290snapdragon_x53_5g_modem-rf_systemsnapdragon_ar1_gen_1_platformc-v2x_9150sa4150p_firmwaresnapdragon_xr2_5g_platformqca8695au_firmwaremilossa6145p_firmwarevision_intelligence_400_platformiq-9075_firmwaresnapdragon_x65_5g_modem-rf_system_firmwaresa9000pwcn3950qca9377qxm1094_firmwarewsa8830_firmwareqxm1083_firmwareqca6574auqca6584au_firmwaresrv1hqcm6490qca6574qamsrv1mqcn9012_firmwarecsra6640sw6100p_firmwaresa8150p_firmwareqcm2290_firmwaresnapdragon_865\+_5g_mobile_platform_firmwarewcn3910_firmwareqca6564a_firmwareqca6698au_firmware5g_fixed_wireless_access_platformsnapdragon_8_elite_gen_5g1_gen_1_firmwarethemisto_firmwareqrb5165m_firmwarefastconnect_6800_firmwareqca6595auqca8081qln1083bd_firmwarewsa8845h_firmwareqca6698auqca6595_firmwaresnapdragon_870_5g_mobile_platform_firmwareqca6696_firmwareqca6174a_firmwaresa8620p_firmwaresnapdragon_690_5g_mobile_platformsm7550pqca6595au_firmwaresa7775pqca6574a_firmwaresnapdragon_7c\+_gen_3_computewcn7880_firmwaresm8550psnapdragon_ar1\+_gen_1_platformsnapdragon_auto_5g_modem-rf_firmwareqam8295p_firmwareqca9367sa8155p_firmwareqca6574au_firmwareiq-615_firmwarequalcomm_215_mobile_platformsnapdragon_625_mobile_platformwcd9341_firmwareqca6696sxr2330p_firmwaresnapdragon_x12_lte_modem_firmwarefsm100_platform_firmwareqca6574_firmwarevision_intelligence_200_platform_firmwarewcd9395qca6564awcd9370qcs8550sm8650q_firmwarefastconnect_6700snapdragon_820_automotive_platform_firmwaresw6100pqca6688aqqxm1095_firmwarewcd9380iq-8275qca6698aq_firmwarefastconnect_7800_firmwaresnapdragon_7s_gen_3_mobile_platformsm7325p_firmwarewcd9375sm7675p_firmwareorneqcn9011_firmwaresxr2230p_firmwareqca6698aqsnapdragon_w5\+_gen_1_wearable_platformqca6564ausw5100p_firmwaremonaco_iot_firmwarefastconnect_7800qxm1093snapdragon_8_elite_gen_5_firmwareqln1083bdsm8475p_firmwaresnapdragon_680_4g_mobile_platform_firmwarefsm100_platformsnapdragon_660_mobile_platformrobotics_rb5_platformsar2230psnapdragon_8_gen_1_mobile_platform_firmwareqcm6490_firmwarewcd9375_firmwarewcd9385_firmwaresnapdragon_8_gen_1_firmwaresnapdragon_778g_5g_mobile_platformsnapdragon_778g\+_5g_mobile_platformsnapdragon_662_mobile_platformwsa8845hvideo_collaboration_vc5_platform_firmwaresar1250p_firmwarewsa8832_firmwaresm7675_firmwaresm6650p_firmwarewcn3988_firmwarevideo_collaboration_vc1_platform_firmwarewcn3615snapdragon_778g_5g_mobile_platform_firmwarewsa8815_firmwarewsa8832wcn3980vision_intelligence_100_platformwcn3660bsnapdragon_626_mobile_platformsnapdragon_8_gen_3_mobile_platformsnapdragon_7\+_gen_2_mobile_platform_firmwaresa6145psnapdragon_695_5g_mobile_platform_firmwaresa7775p_firmwarear8031_firmwaresda660_firmwaresm7435lemansaulemans_au_lgitqca6391_firmwaresm8635_firmwareqxm1095qca6797aqwcn6450qcn6024SnapdragonMultiple Chipsets
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2026-21380
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 3.08%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 15:33
Updated-08 Apr, 2026 | 20:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in DSP Service

Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845h_firmwarex2000086x2000092xg101002_firmwarefastconnect_6900_firmwareqca0000wcd9378c_firmwaresc8380xp_firmwarewsa8840wsa8845hcologne_firmwarewsa8835snapdragon_ar1_gen_1_platformxg101032sc8380xpx2000077x2000086_firmwarex2000077_firmwarex2000094_firmwarex2000094wsa8830_firmwarewsa8845_firmwaresnapdragon_ar1_gen_1_platform_firmwarewcd9385_firmwarexg101032_firmwarewcd9378cx2000092_firmwarexg101039_firmwarewsa8832wsa8835_firmwarefastconnect_7800xg101039x2000090wsa8832_firmwareqca0000_firmwarewcd9385wcd9380_firmwarewsa8840_firmwarefastconnect_7800_firmwarex2000090_firmwarewsa8830xg101002wsa8845wcd9380fastconnect_6900cologneSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2026-21375
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 3.08%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 15:33
Updated-08 Apr, 2026 | 20:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845h_firmwaresnapdragon_8cx_gen_3_compute_platformqcm6490x2000086x2000092xg101002_firmwareqca0000sc8380xp_firmwarewsa8840video_collaboration_vc3_platformvideo_collaboration_vc3_platform_firmwaresnapdragon_ar1_gen_1_platformxg101032sc8380xpsnapdragon_662_mobile_platformx2000086_firmwarewcn3988x2000094_firmwarewsa8830_firmwaresnapdragon_ar1_gen_1_platform_firmwarewcd9385_firmwarex2000092_firmwarexg101039_firmwarefastconnect_7800qcm5430wsa8832_firmwarewcd9375qcm6490_firmwareqca0000_firmwarewcd9370_firmwarewcn3988_firmwarewcd9380_firmwareqcm5430_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewcn3950_firmwarewsa8840_firmwarefastconnect_7800_firmwarex2000090_firmwarewsa8830wsa8845wcd9380colognesnapdragon_460_mobile_platformfastconnect_6900_firmwaresnapdragon_7c\+_gen_3_computewcd9378c_firmwarecologne_firmwarewsa8835wcd9370x2000077wcd9375_firmwarex2000077_firmwarex2000094snapdragon_662_mobile_platform_firmwarewsa8845_firmwarexg101032_firmwarewcd9378csnapdragon_460_mobile_platform_firmwarewsa8832wsa8835_firmwarexg101039fastconnect_6700x2000090snapdragon_8cx_gen_3_compute_platform_firmwarefastconnect_6700_firmwarewcn3950wcd9385xg101002wsa8845hfastconnect_6900Snapdragon
CWE ID-CWE-126
Buffer Over-read
CVE-2026-21382
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 3.08%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 15:33
Updated-08 Apr, 2026 | 20:59
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in Power Management IC

Memory Corruption when handling power management requests with improperly sized input/output buffers.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845h_firmwarex2000086x2000092xg101002_firmwarefastconnect_6900_firmwareqca0000wcd9378c_firmwaresc8380xp_firmwarewsa8840wsa8845hcologne_firmwarexg101032sc8380xpx2000077x2000086_firmwarex2000077_firmwarex2000094_firmwarex2000094wsa8845_firmwarewcd9385_firmwarexg101032_firmwarewcd9378cx2000092_firmwarexg101039_firmwarefastconnect_7800xg101039x2000090qca0000_firmwarewcd9385wcd9380_firmwarewsa8840_firmwarefastconnect_7800_firmwarex2000090_firmwarexg101002wsa8845wcd9380fastconnect_6900cologneSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2013-2596
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.8||HIGH
EPSS-3.13% / 87.02%
||
7 Day CHG~0.00%
Published-13 Apr, 2013 | 01:00
Updated-21 Apr, 2026 | 18:14
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2022-10-06||Apply updates per vendor instructions.

Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted /dev/graphics/fb0 mmap2 system calls, as demonstrated by the Motochopper pwn program.

Action-Not Available
Vendor-n/aMotorola Mobility LLC. (Lenovo Group Limited)Qualcomm Technologies, Inc.Linux Kernel Organization, Inc
Product-razr_mmsm8960razr_hdatrix_hdandroidlinux_kerneln/aKernel
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2019-14068
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.09% / 26.11%
||
7 Day CHG~0.00%
Published-05 Mar, 2020 | 08:56
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bound access in msm routing due to lack of check of size before accessing in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, MDM9607, MSM8905, MSM8909W, Nicobar, QCS405, QCS605, Rennell, Saipan, SDM429W, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm429wsdm845sdx20sdx24mdm9607_firmwaresm8250_firmwareqcs405sm7150_firmwaresm6150msm8909w_firmwaremdm9607sdm429w_firmwareapq8009sm7150apq8009_firmwaresxr2130qcs605_firmwaremsm8905sm8150_firmwaresdx24_firmwaresxr2130_firmwareapq8096auqcs405_firmwarerennellrennell_firmwareqcs605apq8053apq8096au_firmwaresaipan_firmwaresm6150_firmwaresm8250sm8150sdx20_firmwaremsm8905_firmwaresxr1130_firmwarenicobar_firmwaremsm8909wsaipansxr1130apq8053_firmwarenicobarsdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2019-14088
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.99%
||
7 Day CHG~0.00%
Published-07 Feb, 2020 | 05:00
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possible use after free issue while CRM is accessing the link pointer from device private data due to lack of resource protection in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, MDM9206, MDM9207C, MDM9607, QCS605, SDM429W, SDX24, SM8150, SXR1130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-mdm9206mdm9207csm8150_firmwaresdx24_firmwaresdm429wsdx24mdm9206_firmwareqcs605mdm9607_firmwaremdm9607sdm429w_firmwaresm8150sxr1130_firmwareapq8009_firmwaresxr1130apq8009qcs605_firmwaremdm9207c_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-416
Use After Free
CVE-2019-14009
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 9.81%
||
7 Day CHG~0.00%
Published-16 Apr, 2020 | 10:46
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bound memory access while processing TZ command handler due to improper input validation on response length received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, MDM9150, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, SDA660, SDA845, SDM630, SDM636, SDM660, SDM845, SDM850, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm850_firmwaremdm9150_firmwaresdm636_firmwareapq8098_firmwaresdm845msm8998_firmwaresdm660sdm630mdm9607_firmwaremdm9650mdm9607apq8009_firmwaremdm9150sxr2130msm8905sxr2130_firmwaremsm8909sdm636sda845_firmwaresdm630_firmwareapq8098sda660_firmwaremdm9650_firmwaremsm8998sdm850msm8905_firmwaresda660apq8009msm8909_firmwaresdm660_firmwaresda845sdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2019-14030
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 9.81%
||
7 Day CHG~0.00%
Published-05 Mar, 2020 | 08:56
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm850_firmwareqcs404sm8150_firmwaresxr2130_firmwarerennellsdm845mdm9205_firmwarerennell_firmwaremdm9205qcs404_firmwaresm8250_firmwaresc8180x_firmwaresdx55sm7150_firmwaresm6150_firmwaresm8250sm6150sm8150sdm850sdx55_firmwaresm7150sxr2130sc8180xsdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2019-14116
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 8.25%
||
7 Day CHG~0.00%
Published-16 Apr, 2020 | 10:46
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-ipq6018_firmwareipq6018Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-862
Missing Authorization
CVE-2019-13998
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 11.76%
||
7 Day CHG~0.00%
Published-08 Sep, 2020 | 09:31
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-mdm9150_firmwaremdm9640_firmwareqcs610sdm450_firmwaresdm632qcs404_firmwaremdm9650mdm9645apq8009_firmwaremsm8917sdm670qcs605_firmwaresda845_firmwaresa415mbitraapq8098qcn7605mdm9206_firmwarebitra_firmwaremsm8905_firmwaresda660sdx55_firmwareqca8081_firmwaresxr1130apq8053_firmwaresda845sa6155p_firmwaresdm450sdm636_firmwareapq8098_firmwaremsm8998_firmwaresdm630mdm9607_firmwaresm8250_firmwaremdm9655_firmwaresa415m_firmwareqcs405qm215sc7180_firmwareapq8017_firmwaresdm710_firmwaresa6155pqca8081msm8937msm8905sm8150_firmwaremsm8909sxr2130_firmwaremdm9655rennellsc7180msm8953_firmwaresaipan_firmwaresm6150_firmwaremsm8917_firmwaremsm8998sm8150sdx20_firmwaresdm850kamortaapq8017msm8996saipanmdm9640kamorta_firmwareqcm2150_firmwaresdm429wmsm8996au_firmwaresdm632_firmwaresdm845sdx24sdm439sdm429msm8940_firmwaresm7150_firmwaresm6150msm8996ausdm429w_firmwaresm7150sxr2130sc8180xmdm9206sdm670_firmwareqcs404sdx24_firmwareipq8074sdm636ipq6018_firmwaremdm9205qcs605msm8937_firmwaremdm9650_firmwaresdm429_firmwaresxr1130_firmwareapq8009msm8909_firmwarenicobarsdm850_firmwaremsm8920msm8953sdx20qcm2150msm8920_firmwaresdm660sc8180x_firmwareipq8074_firmwaresdm710mdm9607mdm9645_firmwareqcn7605_firmwareqcs610_firmwaremdm9150msm8996_firmwareipq6018apq8096ausdm439_firmwareqcs405_firmwaresdm630_firmwaremdm9205_firmwaresda660_firmwarerennell_firmwareqm215_firmwaresdx55msm8940apq8053apq8096au_firmwaresm8250nicobar_firmwaresdm660_firmwaresdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2019-14050
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 10.49%
||
7 Day CHG~0.00%
Published-05 Mar, 2020 | 08:56
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out-of-bound writes occurs due to lack of check of buffer size will cause buffer overflow only in 32bit architecture. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, MDM9150, MDM9205, MDM9607, MDM9650, MSM8905, Nicobar, QCS405, QCS605, Rennell, SA6155P, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm850_firmwaremdm9150_firmwaresa6155p_firmwaresdm636_firmwaresdm845sdm660sdx24sdm630mdm9607_firmwaremdm9650qcs405sm7150_firmwaresdm710sm6150mdm9607sdm710_firmwaresm7150apq8009_firmwaresa6155psdm670mdm9150qcs605_firmwaremsm8905sdm670_firmwaresm8150_firmwaresdx24_firmwaresdm636qcs405_firmwarerennellsda845_firmwaresdm630_firmwaremdm9205_firmwaresda660_firmwarerennell_firmwaremdm9205qcs605sm6150_firmwaremdm9650_firmwaresm8150sdm850msm8905_firmwaresda660sxr1130_firmwarenicobar_firmwareapq8009sxr1130sdm660_firmwaresda845nicobarsdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-787
Out-of-bounds Write
CVE-2019-14065
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 9.81%
||
7 Day CHG~0.00%
Published-08 Sep, 2020 | 09:31
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-kamorta_firmwaremdm9150_firmwareqcs610sdm845qcs404_firmwaremdm9650sm7150_firmwaresm6150sm7150apq8009_firmwaresdm670sxr2130qcs605_firmwaresc8180xmdm9206sdm670_firmwareqcs404sdm636sda845_firmwareapq8098mdm9205mdm9206_firmwareqcs605sa515mmdm9650_firmwaremsm8905_firmwaresda660sdx55_firmwaresxr1130_firmwaresxr1130apq8009msm8909_firmwaresda845nicobarsdm850_firmwaresa6155p_firmwaresdm636_firmwaresa515m_firmwareapq8098_firmwaremsm8998_firmwaresdm660sdm630mdm9607_firmwaresm8250_firmwaresc8180x_firmwareqcs405sdm710sc7180_firmwaremdm9607sdm710_firmwaresa6155pqcs610_firmwaremdm9150msm8905sm8150_firmwaremsm8909sxr2130_firmwareqcs405_firmwarerennellsc7180sdm630_firmwaremdm9205_firmwaresda660_firmwarerennell_firmwaresdx55sm6150_firmwaresm8250msm8998sm8150sdm850kamortanicobar_firmwaresdm660_firmwaresdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-415
Double Free
CVE-2019-14130
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 15.76%
||
7 Day CHG~0.00%
Published-30 Jul, 2020 | 11:40
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-kamorta_firmwareqcs404sxr2130_firmwarerennellsc7180rennell_firmwareqcs404_firmwaresm8250_firmwaresdx55sm7150_firmwaresm6150_firmwaresm8250sm6150sc7180_firmwarekamortasdx55_firmwaresm7150sxr2130Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2019-14041
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-1.23% / 79.35%
||
7 Day CHG~0.00%
Published-07 Feb, 2020 | 05:00
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

During listener modified response processing, a buffer overrun occurs due to lack of buffer size verification when updating message buffer with physical address information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8953, MSM8996AU, Nicobar, QCM2150, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm2150_firmwaremdm9640_firmwaresdm429wmsm8996au_firmwaresdm632_firmwaresdm845sdm450_firmwaresdm632sdx24sdm439mdm9650sdm429sm7150_firmwaresm6150msm8909w_firmwaremd9607msm8996ausdm429w_firmwaresm7150apq8009_firmwaremsm8917sdm670sxr2130qcs605_firmwaresc8180xmdm9206sdm670_firmwaresdx24_firmwaresda845_firmwareapq8098md9607_firmwaremdm9206_firmwareqcs605sdm429_firmwaremdm9650_firmwaremsm8905_firmwaresda660sdx55_firmwaresxr1130_firmwaresxr1130msm8909wapq8009apq8053_firmwaresda845nicobarsa6155p_firmwaremsm8953sdm450sdm845_firmwareapq8098_firmwaresdx20qcm2150sm8250_firmwaresc8180x_firmwareqcs405sdm710qm215apq8017_firmwaresdm710_firmwaresa6155pmdm9207c_firmwaremsm8905mdm9207csm8150_firmwaresxr2130_firmwareapq8096ausdm439_firmwareqcs405_firmwarerennellsda660_firmwarerennell_firmwareqm215_firmwaresdx55msm8953_firmwareapq8053saipan_firmwaresm6150_firmwareapq8096au_firmwaremsm8917_firmwaresm8250sm8150sdx20_firmwareapq8017saipannicobar_firmwaremdm9640Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2019-14123
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 16.97%
||
7 Day CHG~0.00%
Published-30 Jul, 2020 | 11:40
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-kamorta_firmwareqcs404sxr2130_firmwarerennellsc7180rennell_firmwareqcs404_firmwaresm8250_firmwaresdx55sm7150_firmwaresm6150_firmwaresm8250sm6150sc7180_firmwarekamortasdx55_firmwaresm7150sxr2130Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-125
Out-of-bounds Read
CWE ID-CWE-20
Improper Input Validation
CVE-2019-14071
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 9.81%
||
7 Day CHG~0.00%
Published-05 Mar, 2020 | 08:56
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Compromised reset handler may bypass access control due to AC config is being reset if debug path is enabled to collect secure or non-secure ram dumps in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-apq8096_firmwareqcm2150_firmwaresdm632_firmwaremsm8996au_firmwaresdm845sdm450_firmwaresdm632apq8096sdx24sdm439qcs404_firmwaresdm429msm8940_firmwaresm7150_firmwaresm6150msm8996ausm7150msm8917sdm670sxr2130qcs605_firmwaresc8180xsdm670_firmwareqcs404sdx24_firmwaresdm636sda845_firmwareipq6018_firmwaremdm9205qcs605msm8937_firmwaresdm429_firmwaresda660sdx55_firmwaresxr1130_firmwaresxr1130apq8053_firmwaresda845nicobarsdm850_firmwaresa6155p_firmwaremsm8920msm8953sdm450sdm636_firmwaremsm8998_firmwareqcm2150msm8920_firmwaresdm630sdm660sc8180x_firmwareqcs405sdm710qm215apq8017_firmwaresdm710_firmwaresa6155pmsm8937msm8996_firmwareipq6018sm8150_firmwaresxr2130_firmwareapq8096ausdm439_firmwareqcs405_firmwarerennellsdm630_firmwaremdm9205_firmwaresda660_firmwarerennell_firmwareqm215_firmwaresdx55msm8953_firmwaremsm8940sm6150_firmwareapq8053apq8096au_firmwaremsm8917_firmwaremsm8998sm8150sdm850apq8017msm8996nicobar_firmwaresdm660_firmwaresdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CVE-2019-14093
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 13.18%
||
7 Day CHG~0.00%
Published-30 Jul, 2020 | 11:40
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, QCM2150, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM636, SDM660, SDX20

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-msm8920qcm2150_firmwaremsm8953sdm450sdm636_firmwaresdm429wmsm8996au_firmwaresdm632_firmwareapq8098_firmwaresdm450_firmwaresdm632sdx20qcm2150msm8920_firmwaresdm439mdm9607_firmwaresdm660mdm9650sdm429msm8940_firmwareqcs405msm8909w_firmwaremdm9607msm8996auqm215sdm429w_firmwareapq8017_firmwareapq8009_firmwaremsm8909wmsm8917msm8937mdm9207c_firmwaremsm8996_firmwareqcs605_firmwaremdm9206mdm9207capq8096ausdm439_firmwareqcs405_firmwaresda845_firmwaresdm636apq8098sda660_firmwaremdm9206_firmwareqcs605qm215_firmwaremsm8940apq8053apq8096au_firmwaremsm8953_firmwaremsm8917_firmwaremsm8937_firmwaremdm9650_firmwaresdm429_firmwaresdx20_firmwaresda660apq8017msm8996apq8009apq8053_firmwaresdm660_firmwaresda845Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2019-14078
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 13.18%
||
7 Day CHG~0.00%
Published-02 Jun, 2020 | 15:05
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bound memory access while processing qpay due to not validating length of the response buffer provided by User. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, MSM8909, MSM8998, SDA660, SDA845, SDM630, SDM636, SDM660, SDM845

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-msm8909sdm636_firmwaresdm636sda845_firmwareapq8098_firmwaresdm630_firmwaresdm845apq8098sda660_firmwaremsm8998_firmwaresdm660sdm630msm8998sda660apq8009_firmwareapq8009msm8909_firmwaresdm660_firmwaresda845sdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-131
Incorrect Calculation of Buffer Size
CVE-2019-14076
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 16.97%
||
7 Day CHG~0.00%
Published-22 Jun, 2020 | 07:10
Updated-05 Aug, 2024 | 00:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-kamorta_firmwaremdm9150_firmwaresdm845sdx24qcs404_firmwaremdm9650sm7150_firmwaresm6150sm7150apq8009_firmwaresdm670sxr2130qcs605_firmwaresc8180xmdm9206sdm670_firmwareqcs404sdx24_firmwaresda845_firmwaresa415mapq8098mdm9205mdm9206_firmwareqcs605mdm9650_firmwaremsm8905_firmwaresxr1130_firmwaresdx55_firmwaresxr1130apq8009msm8909_firmwaresda845nicobarsdm850_firmwareapq8098_firmwaremsm8998_firmwaremdm9607_firmwaresm8250_firmwaresc8180x_firmwaresa415m_firmwareqcs405sdm710sc7180_firmwaremdm9607sdm710_firmwaremdm9150msm8905sm8150_firmwaremsm8909sxr2130_firmwareqcs405_firmwarerennellsc7180mdm9205_firmwarerennell_firmwaresdx55sm6150_firmwaresm8250msm8998sm8150sdm850kamortanicobar_firmwaresdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2019-14046
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 9.81%
||
7 Day CHG~0.00%
Published-07 Feb, 2020 | 05:00
Updated-05 Aug, 2024 | 00:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bound access while allocating memory for an array in camera due to improper validation of elements parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in QCS605, SDM439, SDX24

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdx24_firmwaresdm439_firmwaresdx24sdm439qcs605qcs605_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2026-25266
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-5.5||MEDIUM
EPSS-0.01% / 2.00%
||
7 Day CHG~0.00%
Published-04 May, 2026 | 16:43
Updated-06 May, 2026 | 18:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Exposed dangerous function in windows host

Memory corruption while processing IOCTL command when device is in power-save state.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcn7861xg101039_firmwarewsa8845h_firmwarewcd9378cx2000090wsa8832_firmwaresc8380xp_firmwarewcn7880fastconnect_7800_firmwarecolognewsa8832x2000094_firmwaresnapdragon_ar1_gen_1_firmwarefastconnect_6900x2000092wsa8840_firmwarewcn7861_firmwarex2000094xg101039cologne_firmwarex2000086_firmwarexg101002_firmwarexg101032wsa8840x2000086wsa8835_firmwarex2000090_firmwarewcd9385_firmwarewcd9378c_firmwaresc8380xpwsa8830x2000077xg101002wcd9380_firmwarefastconnect_6900_firmwaresnapdragon_ar1_gen_1x2000092_firmwarewcd9380wsa8845_firmwarefastconnect_7800x2000077_firmwarexg101032_firmwarewsa8835wcd9385wsa8845wcn7880_firmwarewsa8830_firmwarewsa8845hSnapdragon
CWE ID-CWE-749
Exposed Dangerous Method or Function
CWE ID-CWE-787
Out-of-bounds Write
CVE-2019-2266
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 13.18%
||
7 Day CHG~0.00%
Published-21 Nov, 2019 | 14:38
Updated-04 Aug, 2024 | 18:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possible double free issue in kernel while handling the camera sensor and its sub modules power sequence in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8053, IPQ4019, IPQ8064, MDM9206, MDM9207C, MDM9607, MSM8909, MSM8909W, Nicobar, QCA9980, QCS405, QCS605, SDM845, SDX24, SM7150, SM8150

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9980_firmwaresdm845sdx24mdm9607_firmwareqcs405sm7150_firmwaremsm8909w_firmwaremdm9607qca9980sm7150qcs605_firmwareipq4019_firmwaremdm9207c_firmwaremdm9206mdm9207csm8150_firmwaremsm8909sdx24_firmwareqcs405_firmwaremdm9206_firmwareqcs605ipq4019apq8053sm8150ipq8064nicobar_firmwaremsm8909wmsm8909_firmwareapq8053_firmwareipq8064_firmwarenicobarsdm845_firmwareSnapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-415
Double Free
CVE-2019-2319
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.10% / 27.62%
||
7 Day CHG~0.00%
Published-12 Dec, 2019 | 08:30
Updated-04 Aug, 2024 | 18:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm850_firmwaresdm670_firmwareqcs404sm8150_firmwaresxr2130_firmwaresda845_firmwaresdm845mdm9205_firmwaremdm9205qcs404_firmwareqcs605sm7150_firmwaresm6150_firmwaresdm710sm6150sm8150sdm850sdm710_firmwaresxr1130_firmwaresm7150sxr1130sdm670sxr2130qcs605_firmwaresda845sdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-53034
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.12% / 30.64%
||
7 Day CHG~0.00%
Published-03 Mar, 2025 | 10:07
Updated-26 Feb, 2026 | 19:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in DSP_Services

Memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync object handle are passed with the DriverKnownEscape flag reset.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwaresc8380xpsc8380xp_firmwarefastconnect_6900fastconnect_6900_firmwarefastconnect_7800_firmwarewsa8840_firmwarewcd9385_firmwarefastconnect_7800wsa8845h_firmwarewcd9380wsa8845hwsa8845_firmwarewsa8840wcd9385wsa8845Snapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2024-53030
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.11% / 29.79%
||
7 Day CHG~0.00%
Published-03 Mar, 2025 | 10:07
Updated-26 Feb, 2026 | 19:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Input Validation in Automotive OS Platform

Memory corruption while processing input message passed from FE driver.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa9000pqca6595au_firmwaresa8650p_firmwareqca6678aqsa8255psa8155p_firmwareqamsrv1m_firmwareqcs9100msm8996aumsm8996au_firmwaresa8620p_firmwaresa8155pqam8650p_firmwareqca6574a_firmwareqca6595_firmwaresnapdragon_820_automotive_firmwareqca6584au_firmwaresa6155_firmwareqam8620psrv1hqca6564auqca6564a_firmwaresa7255psa8620pqam8620p_firmwaresa7255p_firmwareqam8775p_firmwareqam8295p_firmwareqca6797aqqam8255pqca6688aqsa7775p_firmwaresa8255p_firmwaresa8155_firmwaresa8770p_firmwaresa8295p_firmwaresa6150pqca6696_firmwareqam8295psa8150pqca6595ausa6150p_firmwareqcs9100_firmwaresa8295psa8145psa8150p_firmwaresrv1lsa6145psa6155p_firmwareqca6698aq_firmwareqam8650pqam8775pqca6595qca6688aq_firmwaresa8770psrv1h_firmwaresa8775psrv1msnapdragon_820_automotivesa8775p_firmwaresa9000p_firmwareqamsrv1mqca6564au_firmwareqca6574auqca6797aq_firmwaresrv1m_firmwaresa7775psa8650psa8540p_firmwaresa8145p_firmwaresa6155sa8195p_firmwareqca6698aqsa8195pqca6584ausa6155pqamsrv1hqca6564aqca6574au_firmwareqamsrv1h_firmwareqca6678aq_firmwareqca6574aqam8255p_firmwaresa6145p_firmwaresa8155srv1l_firmwareqca6696sa8540pSnapdragon
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-53022
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.15% / 35.26%
||
7 Day CHG~0.00%
Published-03 Mar, 2025 | 10:07
Updated-26 Feb, 2026 | 19:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Input Validation in Automotive OS Platform

Memory corruption may occur during communication between primary and guest VM.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6696sa7775psa8775psa8540p_firmwaresa8775p_firmwareqam8255p_firmwaresrv1m_firmwaresrv1mqamsrv1h_firmwareqam8295p_firmwaresrv1l_firmwaresa8620pqam8775pqam8255pqca6696_firmwaresa9000p_firmwareqca6595_firmwaresa8540psa8620p_firmwaresa8770p_firmwaresa8255p_firmwareqca6595au_firmwaresrv1lqam8620p_firmwaresa7255psa8770psa8650p_firmwaresa9000psrv1hqam8775p_firmwareqamsrv1hsa7775p_firmwareqam8650p_firmwaresa8295pqamsrv1mqam8295pqca6595qamsrv1m_firmwaresa8295p_firmwareqam8650psa8255psa8650psrv1h_firmwareqam8620pqca6595ausa7255p_firmwareSnapdragon
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-53009
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-5.3||MEDIUM
EPSS-0.07% / 20.12%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:48
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Automotive Autonomy

Memory corruption while operating the mailbox in Automotive.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qdx1010_firmwareqcm8550_firmwarerobotics_rb3sa6150p_firmwaresd865_5gqca6595sm8735wcd9370qca8081_firmwaresnapdragon_670_mobileqca6696qam8620p_firmwarewcn7880_firmwarewcd9340_firmwaresa8530pwcd9341_firmwaresxr2330p_firmwarewcd9395_firmwarewcn7881_firmwarewcn7750qcc710_firmwareqca6426fastconnect_6700snapdragon_x50_5g_modem-rf_firmwarewsa8832_firmwareqca8337qdu1110qca6426_firmwarewcd9395sc8180xp-aaabqca6574au_firmwaresnapdragon_x72_5g_modem-rfqam8295pwcd9341qca6574auwcd9390snapdragon_888\+_5g_mobile_firmwaresa8620p_firmwarewsa8810_firmwarewsa8845h_firmwaresc8180xp-acafsa9000p_firmwaresrv1hsnapdragon_850_mobile_computeqcs9100sdx80mfastconnect_6800_firmwareqcs5430wcn7860qcm5430qcm5430_firmwaresa8770psnapdragon_678_mobile_firmwaressg2115pqcc710snapdragon_x32_5g_modem-rf_firmwaresnapdragon_xr2_5g_firmwaresa8540pqsm8350_firmwarefastconnect_6900qru1032_firmwareqep8111sa7255pqfw7114wcd9385_firmwareqca6421qca6310qam8255p_firmwaresa8155_firmwaresnapdragon_x65_5g_modem-rfqca6335wsa8845sa6155pqca6421_firmwaresc8180x-adqca6564au_firmwarewsa8810qam8650pqdu1000_firmwaresa9000psrv1h_firmwaresnapdragon_888_5g_mobile_firmwareqca6595ausnapdragon_888_5g_mobilesxr2250p_firmwareqdu1010wcd9326_firmwaresa6155p_firmwaresnapdragon_845_mobile_firmwarewsa8840snapdragon_ar1_gen_1srv1m_firmwaresnapdragon_x35_5g_modem-rf_firmwareqcs8550_firmwareqca6698auqdu1210_firmwaresnapdragon_8_gen_2_mobile_firmwaresnapdragon_x55_5g_modem-rfqfw7124_firmwareqca6436_firmwaresm8750pqcn9012snapdragon_x55_5g_modem-rf_firmwaresnapdragon_x62_5g_modem-rf_firmwareqmp1000snapdragon_8_gen_2_mobileqca6420wcd9370_firmwareqdu1110_firmwareqdu1000sa7255p_firmwaresnapdragon_x72_5g_modem-rf_firmwareqca6574asnapdragon_8\+_gen_2_mobileqca6174asa8195pwcd9340qdu1210snapdragon_auto_5g_modem-rf_gen_2qca6335_firmwareqcm6490sa8540p_firmwaresxr2250psm8550p_firmwareqcm8550wcn3988snapdragon_765_5g_mobile_firmwareqcn9274vision_intelligence_300_firmwaresa8775pqca6574sxr2230p_firmwaresd675_firmwaresnapdragon_855_mobile_firmwareqca6698au_firmwareqca6430_firmwareqcn9011sa8775p_firmwareqamsrv1hsdx57mwsa8845hwcd9326sa6150psa8155p_firmwareqca6564asa8155psnapdragon_765g_5g_mobile_firmwarewsa8830sm8550psa6145psnapdragon_768g_5g_mobile_firmwaresa8255p_firmwarear8035qamsrv1m_firmwarewcn7750_firmwaresa8650p_firmwaresa6155srv1l_firmwareqcs9100_firmwaresnapdragon_865\+_5g_mobile_firmwareqcn6224qcs615ssg2125p_firmwarewcn3950_firmwareqca6698aqsa7775p_firmwaresa8530p_firmwarefastconnect_6200sd670sa8145p_firmwaresc8180x-acaf_firmwarewcd9378qdx1011sa8150p_firmwarefastconnect_6700_firmwarevideo_collaboration_vc3_platform_firmwarewcn3990robotics_rb3_firmwaresnapdragon_x75_5g_modem-rf_firmwaresd670_firmwaresnapdragon_8_gen_3_mobilesnapdragon_855_mobileqcs6490sc8180xp-acaf_firmwarefastconnect_6200_firmwarewsa8830_firmwareqcn6224_firmwareqca6431qca6678aq_firmwarewsa8845_firmwarewsa8832wcd9378_firmwaresrv1lsdx57m_firmwaresxr2130_firmwaresrv1mqca6678aqsnapdragon_860_mobile_firmwaresnapdragon_x35_5g_modem-rfar8035_firmwaresc8180xp-aaab_firmwarewcn7860_firmwaresc8380xpsnapdragon_x62_5g_modem-rfqca6564ausm4635sc8180xp-adsc8280xp-abbbwsa8815_firmwaresa8195p_firmwareqca8337_firmwaresg8275p_firmwareqca9377_firmwareqcm6490_firmwaresm7250p_firmwaresm4635_firmwarevision_intelligence_400_firmwareqru1032wcn3950snapdragon_870_5g_mobile_firmwaresm8750snapdragon_auto_5g_modem-rf_gen_2_firmwareqca6797aq_firmwaresa8295p_firmwaresnapdragon_870_5g_mobilesd_675_firmwaresnapdragon_678_mobilesc8180x-acafsm7250psa8155sd_8cx_firmwaresc8180x-ad_firmwareqca6584auqcn6274_firmwareqcn9011_firmwareqru1062_firmwaresnapdragon_850_mobile_compute_firmwaresnapdragon_675_mobile_firmwaresnapdragon_768g_5g_mobilesc8380xp_firmwareqru1062qca6310_firmwaresnapdragon_845_mobilesnapdragon_8_gen_3_mobile_firmwarefastconnect_6800qfw7114_firmwareqca6595_firmwarefastconnect_7800_firmwaresnapdragon_675_mobilesnapdragon_865_5g_mobile_firmwarefastconnect_6900_firmwarewcd9380sa6145p_firmwareqam8255psxr2230psa6155_firmwareqmp1000_firmwaresnapdragon_xr2_5gwcn7880sa8150psxr2330psnapdragon_x24_lte_modemsc8180x-aaabsxr1230psc8180x-aaab_firmwarewcn7881video_collaboration_vc3_platformaqt1000qca6688aqqam8295p_firmwaresd855qca6431_firmwarewcn3990_firmwareqca6698aq_firmwareqca6564a_firmwarewcd9385snapdragon_888\+_5g_mobileqsm8350snapdragon_8_gen_1_mobilesa8255psxr1230p_firmwarewcd9390_firmwaresnapdragon_865\+_5g_mobileqep8111_firmwareqcs615_firmwareqca6430snapdragon_855\+_mobilesg8275psnapdragon_765_5g_mobileqdx1011_firmwaresnapdragon_860_mobilesc8180xp-ad_firmwaresm8750_firmwaresdx55_firmwaressg2125pqru1052sxr2130snapdragon_x65_5g_modem-rf_firmwareqamsrv1mqca6174a_firmwarewcn7861_firmwarewcn7861snapdragon_x50_5g_modem-rfqam8650p_firmwaresnapdragon_670_mobile_firmwareqca6420_firmwareaqt1000_firmwareqcs6490_firmwareqam8620pwcn3980_firmwaresd855_firmwareqca6436qca6584au_firmwareqcn6274snapdragon_x24_lte_modem_firmwarewsa8835qca6391_firmwarewsa8840_firmwareqfw7124qca6595au_firmwareqdu1010_firmwareqcs8300_firmwareqca6696_firmwareqcs8300wcd9380_firmwareqca6574_firmwareqca8081wsa8815sd_8_gen1_5gsnapdragon_ar2_gen_1_firmwareqam8775pqca9377qca6797aqsnapdragon_x75_5g_modem-rfsa8620pqca6574a_firmwaresdx55snapdragon_865_5g_mobilesnapdragon_855\+_mobile_firmwaresd675wcd9375_firmwaresd_8_gen1_5g_firmwaresa7775pqca6391snapdragon_ar1_gen_1_firmwareqcn9274_firmwareqcn9012_firmwareqcs5430_firmwaresnapdragon_x32_5g_modem-rfqru1052_firmwaresa8770p_firmwaresa8295pqcs8550sc8280xp-abbb_firmwaresm8735_firmwarefastconnect_7800sa8650pqam8775p_firmwaresd865_5g_firmwaresm8750p_firmwarewcd9375snapdragon_8\+_gen_2_mobile_firmwareqca6688aq_firmwarevision_intelligence_300snapdragon_ar2_gen_1snapdragon_765g_5g_mobilewcn3988_firmwareqamsrv1h_firmwaresa8145psd_675vision_intelligence_400sdx80m_firmwarewsa8835_firmwaressg2115p_firmwaresd_8cxwcn3980qdx1010snapdragon_8_gen_1_mobile_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2024-49845
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.89%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:32
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Input Validation in HLOS

Memory corruption during the FRS UDS generation process.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qdx1011_firmwarewcd9340_firmwaresa8775psnapdragon_765_5g_mobileqca6678aqwcd9385_firmwarewcn3988_firmwaresnapdragon_x35_5g_modem-rf_firmwareqca6431_firmwareqca6678aq_firmwareqam8295p_firmwareqca6698aq_firmwaresa8775p_firmwaresnapdragon_ar1_gen_1qfw7114_firmwarewsa8832_firmwareqcs615_firmwaresd_8_gen1_5g_firmwareqdx1010wcd9385snapdragon_x55_5g_modem-rf_firmwarewcd9340qsm8350qca6797aqqcs8550_firmwarefastconnect_6900snapdragon_865\+_5g_mobile_firmwaresm6650pqcn9274fastconnect_6200_firmwareqca6574_firmwareqfw7124_firmwareqca6595ausm7250p_firmwaresa8150pqca8337_firmwarewsa8835snapdragon_888\+_5g_mobile_firmwarear8035_firmwaresc8380xp_firmwaresa9000p_firmwarewcd9390sa8195psa6150pwcd9390_firmwarewcd9395snapdragon_x55_5g_modem-rfqcs5430_firmwaresm8650qsd865_5gqca6421_firmwareqca6688aqqca6574asnapdragon_x65_5g_modem-rfsnapdragon_x72_5g_modem-rfwsa8810_firmwaresxr2330pqru1062_firmwareqru1052_firmwareqdu1110_firmwarewsa8815fastconnect_6200qca6436_firmwaresm8650q_firmwaresa6155psa8155psa7255psa8650p_firmwareqcc710qca6797aq_firmwareqca6391_firmwarefastconnect_7800qcn6224wcn7881_firmwareqca6696_firmwaresnapdragon_888\+_5g_mobilesnapdragon_765_5g_mobile_firmwaresa9000psxr2330p_firmwarewsa8845hsrv1lqdx1011sa8540p_firmwaresrv1h_firmwaresnapdragon_888_5g_mobile_firmwareqca6174asm4635_firmwareqcn6274snapdragon_x62_5g_modem-rf_firmwaresm8750psa8530psm7675qca8081wsa8840_firmwarewsa8845qru1032qca6688aq_firmwaresm4635qam8620pqru1052sa8255p_firmwareqca6431snapdragon_8_gen_1_mobilesa8145p_firmwarewcd9380_firmwaresm8635p_firmwareqamsrv1hsa8650pqam8650pqdu1000wcd9370qca6574ausa6145psnapdragon_8_gen_1_mobile_firmwarewsa8815_firmwaresnapdragon_768g_5g_mobilewcn3950_firmwareqca8081_firmwareqcm5430_firmwaresa8620psnapdragon_8_gen_3_mobile_firmwareqmp1000qca6426_firmwaresa8150p_firmwaresrv1hwcn3950wcd9395_firmwareqdu1210_firmwaresm8635wcn7860_firmwaresnapdragon_x75_5g_modem-rfwcd9380qcs8550sa8770psm8635_firmwarewcn6650qdu1010_firmwaresnapdragon_auto_5g_modem-rf_gen_2qam8620p_firmwarewsa8840fastconnect_7800_firmwaresc8380xpsnapdragon_x35_5g_modem-rfqcs5430sm8635pqca6426qdu1110wsa8835_firmwaresm8735qru1032_firmwareqam8255p_firmwareqca6696snapdragon_765g_5g_mobilesc8280xp-abbb_firmwaresa6150p_firmwarewcn6755qcn6224_firmwaresd_8_gen1_5gqcs8300_firmwareqcs8300sa8295psm7675p_firmwareqep8111qca6174a_firmwareqdu1210qca8337fastconnect_6800_firmwaresm7250pwcd9378snapdragon_xr2_5gwcn6450sm7675_firmwarewcn6650_firmwareqca6698aqsm7675psnapdragon_888_5g_mobilewcn7860sxr2130_firmwarewsa8810sd865_5g_firmwaresnapdragon_768g_5g_mobile_firmwareqmp1000_firmwaresnapdragon_x32_5g_modem-rfsa7775pqam8775pqca6574a_firmwareqfw7124qca6595au_firmwarewcn7750_firmwareqcs9100sa8530p_firmwaresa8540psa8295p_firmwaresnapdragon_x65_5g_modem-rf_firmwareqca6574snapdragon_auto_5g_modem-rf_gen_2_firmwaresxr2130sm8750_firmwareqamsrv1h_firmwarefastconnect_6800qdu1010sa7255p_firmwarefastconnect_6700_firmwaresm8750p_firmwareqcm5430sm7635sm6650p_firmwareqcs9100_firmwaresnapdragon_x32_5g_modem-rf_firmwareqamsrv1mqca6436snapdragon_8_gen_3_mobilesnapdragon_765g_5g_mobile_firmwareqcn6274_firmwareqca6421qcm6490qcc710_firmwaresm8750sm6650_firmwaresrv1m_firmwarewcn7880qam8295psa8770p_firmwaresnapdragon_865\+_5g_mobileqcm6490_firmwaresc8280xp-abbbwcn7750wsa8845_firmwareqcm8550snapdragon_x72_5g_modem-rf_firmwarewcn7880_firmwareqca6391qca6595sa8620p_firmwarewsa8845h_firmwaresnapdragon_865_5g_mobile_firmwaresa6155p_firmwarewcn6450_firmwarewcn7861qam8775p_firmwareqca6584au_firmwareqca6584auqcs6490_firmwaresa8195p_firmwareqca6574au_firmwarewcd9370_firmwaresa8155p_firmwareqfw7114sm6650qam8255psnapdragon_870_5g_mobile_firmwaresm8735_firmwarewsa8832wcn6755_firmwareqep8111_firmwaresrv1mwcd9375qru1062sa7775p_firmwarear8035snapdragon_xr2_5g_firmwareqcs615wsa8830video_collaboration_vc3_platformqcm8550_firmwaresnapdragon_ar1_gen_1_firmwarewcd9375_firmwaresnapdragon_865_5g_mobilesrv1l_firmwarewcn7861_firmwaresa8255pfastconnect_6700video_collaboration_vc3_platform_firmwareqca6595_firmwarewcn7881qsm8350_firmwaresnapdragon_x75_5g_modem-rf_firmwaresnapdragon_x62_5g_modem-rfqdu1000_firmwareqcs6490snapdragon_870_5g_mobilewcn3988wsa8830_firmwareqam8650p_firmwaresm7635_firmwaresa8145pfastconnect_6900_firmwarewcd9378_firmwareqcn9274_firmwareqamsrv1m_firmwaresa6145p_firmwareqdx1010_firmwareSnapdragon
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-49841
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.89%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:32
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Detection of Error Condition Without Action in Hypervisor

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_8cxqamsrv1m_firmwaresa6155p_firmwarewcn3950_firmwareqam8775p_firmwarear8035_firmwareqamsrv1mqcs9100_firmwaresxr2330p_firmwaresnapdragon_x72_5g_modem-rf_firmwareqca8081_firmwaresnapdragon_x24_lte_modem_firmwareqca8337_firmwareqca6430snapdragon_670_mobilewcd9326qca6698aq_firmwareqcm5430sa8650p_firmwaresa8650psdx57m_firmwaresnapdragon_ar1_gen_1_firmwareqca6678aq_firmwareqca6431qmp1000_firmwaresa8770pqdu1010sa8775pfastconnect_7800snapdragon_xr2_5g_firmwarerobotics_rb3_firmwaresnapdragon_675_mobileqca6564a_firmwareqep8111_firmwareqcm6490snapdragon_x72_5g_modem-rfwcd9340snapdragon_x55_5g_modem-rf_firmwaresa6145pqca6436_firmwareqcs5430_firmwarewcd9380_firmwareqfw7124snapdragon_850_mobile_computeqam8255pwcn3990sxr1230psrv1lwcn7881_firmwaresa8770p_firmwaresa7255p_firmwaresd670_firmwareqca6426_firmwarewsa8815_firmwareqdx1010sa8540p_firmwareqsm8350qru1052_firmwareqamsrv1h_firmwarewcd9385_firmwarewcn7861_firmwaresdx55srv1h_firmwareqmp1000wsa8835wcd9395qca6678aqvision_intelligence_400_firmwaresd670snapdragon_765_5g_mobile_firmwaresa8255pqru1062_firmwaresnapdragon_855\+_mobilefastconnect_6900wcd9378wcd9380wsa8810_firmwaresm7250p_firmwaresm7250psc8180x-acaf_firmwareqru1032sxr2130_firmwaresd_675_firmwareqca6574_firmwarewsa8810qca6431_firmwareqca6574a_firmwareqcm8550_firmwarewcn3990_firmwareqca6391_firmwareqcn6224snapdragon_x32_5g_modem-rfwsa8840snapdragon_auto_5g_modem-rf_gen_2_firmwarefastconnect_6800sd865_5g_firmwaresc8180xp-acaf_firmwaresa8155p_firmwareqamsrv1hqcn6274_firmwareqca6696_firmwaresnapdragon_765g_5g_mobilesnapdragon_860_mobile_firmwareqfw7114_firmwaresnapdragon_8_gen_3_mobilesnapdragon_x24_lte_modemwsa8845h_firmwaresdx55_firmwaresnapdragon_x32_5g_modem-rf_firmwaresnapdragon_855_mobilewcd9370qdx1011wcn7880qca6595au_firmwareqca6595wcd9375qcs5430snapdragon_865_5g_mobilevision_intelligence_300sm8750_firmwaresa8775p_firmwaresm8750qca6595_firmwaresdx80mwcd9326_firmwaresc8380xpwsa8845snapdragon_x75_5g_modem-rf_firmwareqca6421ssg2125p_firmwareqcs8550qru1032_firmwaresm8735_firmwareqcn9274_firmwareqcm8550qcs6490_firmwarewsa8832_firmwaresc8180x-acafqca9377qca6797aq_firmwareqdu1210sa9000p_firmwaresa8295psrv1m_firmwareqep8111sd855_firmwaresc8280xp-abbb_firmwaresnapdragon_860_mobilesnapdragon_ar1_gen_1sa8155qdu1210_firmwareqca6688aqsnapdragon_768g_5g_mobile_firmwareqcm6490_firmwareqam8650psrv1mfastconnect_6200snapdragon_x35_5g_modem-rfsa6145p_firmwaresa8150psdx57msnapdragon_8_gen_1_mobileqam8295p_firmwareqdu1000wcd9340_firmwarewsa8845hsnapdragon_x65_5g_modem-rf_system_firmwaresd855sc8180x-ad_firmwaresnapdragon_ar2_gen_1sa8540psa8155_firmwaresrv1hfastconnect_6800_firmwareqca6595ausnapdragon_x75_5g_modem-rfvideo_collaboration_vc3_platformvision_intelligence_300_firmwaresnapdragon_870_5g_mobilesnapdragon_auto_5g_modem-rf_gen_2sxr2130qca6696ssg2125pqca6310_firmwaresnapdragon_855\+_mobile_firmwarewsa8830qdu1110sxr2330pqca6430_firmwaresnapdragon_x65_5g_modem-rf_systemqca6335sa8155pqdu1010_firmwaresm8735wcn3980_firmwarewsa8815sa9000psnapdragon_765_5g_mobileqam8295psd_675wcd9378_firmwaresdx80m_firmwaresc8180xp-adqca6698aqqcs8300sa8150p_firmwaresd865_5gqca6335_firmwaresnapdragon_x62_5g_modem-rf_system_firmwareqcm5430_firmwaresnapdragon_865\+_5g_mobilewcd9390_firmwareqca6174aqam8255p_firmwaresnapdragon_x50_5g_modem-rfsnapdragon_865_5g_mobile_firmwaresd_8cx_firmwareqcc710qcs8300_firmwarewcd9370_firmwareaqt1000_firmwaresa7775psnapdragon_x50_5g_modem-rf_firmwareqca6584auqca6584au_firmwarevideo_collaboration_vc3_platform_firmwarewcn7860_firmwaresnapdragon_888\+_5g_mobilesa7775p_firmwareqca6564asnapdragon_8_gen_3_mobile_firmwareqca6574au_firmwarefastconnect_6200_firmwareqfw7124_firmwaresnapdragon_670_mobile_firmwaresnapdragon_678_mobile_firmwaresnapdragon_870_5g_mobile_firmwaresc8180xp-aaabsm8750psa6155qcn9274snapdragon_888_5g_mobilewcd9395_firmwareqcs9100snapdragon_x62_5g_modem-rf_systemqca6420sc8180xp-aaab_firmwaresnapdragon_845_mobileqam8620psd_8_gen1_5gsnapdragon_888_5g_mobile_firmwarerobotics_rb3qca6574ssg2115psnapdragon_ar2_gen_1_firmwaresrv1l_firmwaresnapdragon_850_mobile_compute_firmwareqam8775pqca6310wsa8835_firmwaresc8280xp-abbbqru1062qca6391qfw7114qca6574asa8255p_firmwarewcn7860qcs8550_firmwarear8035sa8620pwcn7881wcn7861sc8180x-adsa8620p_firmwaresd_8_gen1_5g_firmwarefastconnect_6900_firmwaresnapdragon_xr2_5gsnapdragon_765g_5g_mobile_firmwarewcn3980qdx1010_firmwareqca6420_firmwareqca8337sa6155_firmwaresnapdragon_8_gen_1_mobile_firmwareqdx1011_firmwarewcd9341_firmwareqsm8350_firmwaresd675qcs6490qca6426sc8380xp_firmwareqcc710_firmwareqca9377_firmwareaqt1000sa7255psnapdragon_888\+_5g_mobile_firmwareqdu1110_firmwaresa6155pwsa8832qcn6274snapdragon_845_mobile_firmwareqdu1000_firmwarewcn7880_firmwareqru1052wcd9341sm8750p_firmwareqca6421_firmwarewsa8840_firmwaresa8295p_firmwaresnapdragon_678_mobilesnapdragon_855_mobile_firmwareqcn6224_firmwaresc8180xp-ad_firmwaresc8180x-aaabsnapdragon_865\+_5g_mobile_firmwaresxr1230p_firmwareqca6564au_firmwareqca6797aqsnapdragon_675_mobile_firmwareqca6688aq_firmwaresnapdragon_768g_5g_mobilesnapdragon_x35_5g_modem-rf_firmwarewsa8830_firmwaresc8180x-aaab_firmwaresd675_firmwareqca6564auqam8650p_firmwaressg2115p_firmwarewcd9390wcd9375_firmwarewcn3950qca8081wsa8845_firmwareqca6574auwcd9385wcn7750fastconnect_6700_firmwareqca6436sc8180xp-acafwcn7750_firmwaresnapdragon_x55_5g_modem-rfqam8620p_firmwareqca6174a_firmwarevision_intelligence_400fastconnect_6700fastconnect_7800_firmwareSnapdragon
CWE ID-CWE-390
Detection of Error Condition Without Action
CWE ID-CWE-755
Improper Handling of Exceptional Conditions
CVE-2024-49842
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.06% / 18.02%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:32
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Access Control in Hypervisor

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qdx1010_firmwaresdm429w_firmwareqcm8550_firmwarerobotics_rb3sd865_5gqca6595sm8735wcd9370qca8081_firmwaresnapdragon_670_mobileqca6696qam8620p_firmwarewcn7880_firmwarewcd9340_firmwarewcd9341_firmwaresxr2330p_firmwarewcd9395_firmwarewcn7881_firmwarewcn7750qcc710_firmwareqca6426fastconnect_6700snapdragon_x50_5g_modem-rf_firmwarewsa8832_firmwaresnapdragon_wear_4100\+_firmwareqca8337qdu1110qca6426_firmwarewcd9395sc8180xp-aaabqca6574au_firmwaresnapdragon_x72_5g_modem-rfqam8295pwcd9341qca6574auwcd9390snapdragon_888\+_5g_mobile_firmwaresa8620p_firmwarewsa8810_firmwarewsa8845h_firmwaresa9000p_firmwaresc8180xp-acafsrv1hsnapdragon_850_mobile_computewcn3660b_firmwareqcs9100sdx80mfastconnect_6800_firmwareqcs5430wcn7860qcm5430qcm5430_firmwaresa8770psnapdragon_678_mobile_firmwaressg2115pqcc710snapdragon_x32_5g_modem-rf_firmwaresnapdragon_xr2_5g_firmwaresa8540pqsm8350_firmwaresnapdragon_wear_4100\+fastconnect_6900qru1032_firmwareqep8111sa7255pqfw7114wcd9385_firmwareqca6421qca6310qam8255p_firmwaresa8155_firmwareqca6335snapdragon_x65_5g_modem-rfwsa8845sa6155pqca6421_firmwaresc8180x-adqca6564au_firmwaresnapdragon_429_mobile_firmwarewsa8810qam8650pqdu1000_firmwaresa9000psrv1h_firmwaresnapdragon_888_5g_mobile_firmwareqca6595ausnapdragon_888_5g_mobileqdu1010wcd9326_firmwaresa6155p_firmwaresnapdragon_845_mobile_firmwarewsa8840snapdragon_ar1_gen_1srv1m_firmwareqcs8550_firmwaresnapdragon_x35_5g_modem-rf_firmwareqdu1210_firmwaresnapdragon_x55_5g_modem-rfqfw7124_firmwareqca6436_firmwaresm8750psnapdragon_x55_5g_modem-rf_firmwaresnapdragon_x62_5g_modem-rf_firmwareqmp1000qca6420wcd9370_firmwareqdu1110_firmwareqdu1000wcn3660bqca6574asnapdragon_x72_5g_modem-rf_firmwaresa7255p_firmwarewcn3620_firmwareqca6174awcd9340qdu1210snapdragon_auto_5g_modem-rf_gen_2qca6335_firmwareqcm6490sa8540p_firmwareqcm8550snapdragon_765_5g_mobile_firmwareqcn9274vision_intelligence_300_firmwaresa8775pqca6574sd675_firmwaresnapdragon_855_mobile_firmwareqca6430_firmwaresa8775p_firmwareqamsrv1hsdx57mwsa8845hwcd9326sa8155p_firmwareqca6564asa8155psnapdragon_765g_5g_mobile_firmwarewsa8830sa6145psnapdragon_768g_5g_mobile_firmwaresa8255p_firmwarear8035qamsrv1m_firmwarewcn7750_firmwaresa8650p_firmwaresa6155wcn3620srv1l_firmwareqcs9100_firmwaresnapdragon_865\+_5g_mobile_firmwareqcn6224snapdragon_429_mobileqca6698aqwcn3950_firmwaresa7775p_firmwaressg2125p_firmwarefastconnect_6200sd670wcn3680bsc8180x-acaf_firmwarewcd9378qdx1011sa8150p_firmwarefastconnect_6700_firmwarevideo_collaboration_vc3_platform_firmwarewcn3990robotics_rb3_firmwaresnapdragon_x75_5g_modem-rf_firmwaresd670_firmwaresnapdragon_8_gen_3_mobilesnapdragon_855_mobileqcs6490sc8180xp-acaf_firmwarefastconnect_6200_firmwarewsa8830_firmwareqcn6224_firmwareqca6431qca6678aq_firmwarewsa8845_firmwarewsa8832wcd9378_firmwaresdx57m_firmwaresrv1lsxr2130_firmwaresrv1mqca6678aqsnapdragon_860_mobile_firmwaresnapdragon_x35_5g_modem-rfar8035_firmwaresc8180xp-aaab_firmwarewcn7860_firmwaresc8380xpsnapdragon_x62_5g_modem-rfqca6564ausc8180xp-adsc8280xp-abbbwsa8815_firmwareqca8337_firmwareqca9377_firmwareqcm6490_firmwaresm7250p_firmwareqru1032vision_intelligence_400_firmwarewcn3950snapdragon_870_5g_mobile_firmwaresm8750qca6797aq_firmwaresnapdragon_auto_5g_modem-rf_gen_2_firmwaresa8295p_firmwaresnapdragon_870_5g_mobilesd_675_firmwaresnapdragon_678_mobilesm7250psc8180x-acafsa8155sd_8cx_firmwaresc8180x-ad_firmwareqca6584auqcn6274_firmwareqru1062_firmwaresnapdragon_850_mobile_compute_firmwaresnapdragon_675_mobile_firmwaresnapdragon_768g_5g_mobilesc8380xp_firmwareqru1062qca6310_firmwaresnapdragon_845_mobilesnapdragon_8_gen_3_mobile_firmwarefastconnect_6800qfw7114_firmwareqca6595_firmwarefastconnect_7800_firmwaresnapdragon_675_mobilesnapdragon_865_5g_mobile_firmwarefastconnect_6900_firmwarewcd9380sa6145p_firmwareqam8255psa6155_firmwareqmp1000_firmwaresnapdragon_xr2_5gwcn7880sa8150psxr2330psnapdragon_x24_lte_modemsc8180x-aaabsxr1230psc8180x-aaab_firmwarewcn7881video_collaboration_vc3_platformaqt1000qca6688aqqam8295p_firmwaresd855qca6431_firmwarewcn3990_firmwareqca6698aq_firmwareqca6564a_firmwarewcd9385snapdragon_888\+_5g_mobileqsm8350snapdragon_8_gen_1_mobilesa8255psxr1230p_firmwarewcd9390_firmwaresnapdragon_865\+_5g_mobileqep8111_firmwareqca6430snapdragon_855\+_mobilesnapdragon_765_5g_mobileqdx1011_firmwaresnapdragon_860_mobilesc8180xp-ad_firmwaresm8750_firmwaresdx55_firmwaressg2125pqru1052sxr2130snapdragon_x65_5g_modem-rf_firmwareqamsrv1mqca6174a_firmwarewcn7861_firmwarewcn7861snapdragon_x50_5g_modem-rfqam8650p_firmwaresnapdragon_670_mobile_firmwareqca6420_firmwareaqt1000_firmwareqcs6490_firmwaresdm429wqam8620psd855_firmwarewcn3980_firmwareqca6436qca6584au_firmwareqcn6274snapdragon_x24_lte_modem_firmwarewsa8835qca6391_firmwarewsa8840_firmwareqfw7124qca6595au_firmwareqdu1010_firmwareqcs8300_firmwareqca6696_firmwareqcs8300wcd9380_firmwareqca6574_firmwareqca8081wsa8815sd_8_gen1_5gqam8775pqca9377snapdragon_ar2_gen_1_firmwareqca6797aqsnapdragon_x75_5g_modem-rfsa8620pqca6574a_firmwaresdx55snapdragon_865_5g_mobilesnapdragon_855\+_mobile_firmwaresd675sd_8_gen1_5g_firmwarewcd9375_firmwaresa7775pqca6391snapdragon_ar1_gen_1_firmwareqcn9274_firmwareqcs5430_firmwaresnapdragon_x32_5g_modem-rfqru1052_firmwaresa8770p_firmwaresa8295pqcs8550sm8735_firmwaresc8280xp-abbb_firmwarefastconnect_7800sa8650pqam8775p_firmwaresd865_5g_firmwaresm8750p_firmwarewcd9375qca6688aq_firmwarevision_intelligence_300snapdragon_ar2_gen_1snapdragon_765g_5g_mobileqamsrv1h_firmwaresd_675wsa8835_firmwaresdx80m_firmwaresd_8cxssg2115p_firmwarevision_intelligence_400wcn3980qdx1010wcn3680b_firmwaresnapdragon_8_gen_1_mobile_firmwareSnapdragon
CWE ID-CWE-284
Improper Access Control
CVE-2024-49829
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 19.35%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:32
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Camera

Memory corruption can occur during context user dumps due to inadequate checks on buffer length.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwaresnapdragon_429_mobile_firmwarefastconnect_7800_firmwarewcn3620_firmwarewsa8835wcn3620sdm429w_firmwarewsa8830wsa8830_firmwarewsa8835_firmwarewcd9380snapdragon_8_gen_1_mobile_firmwaresnapdragon_429_mobilefastconnect_6900sdm429wfastconnect_6900_firmwaresnapdragon_8_gen_1_mobilewcn3660b_firmwarefastconnect_7800wcn3660bSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2024-49832
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.11% / 29.33%
||
7 Day CHG~0.00%
Published-03 Feb, 2025 | 16:51
Updated-05 Feb, 2025 | 16:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Camera

Memory corruption in Camera due to unusually high number of nodes passed to AXI port.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwarewsa8840fastconnect_6900sdm429wwcn7860snapdragon_429_mobilewsa8845h_firmwaresnapdragon_8_gen_1_mobile_firmwarewcn3620_firmwarewcn7881_firmwarewsa8845wsa8832wcn7881wcd9390_firmwarewcd9380_firmwaresnapdragon_8_gen_3_mobile_firmwaresm8750wcn3660bsnapdragon_8_gen_3_mobilesdm429w_firmwarewcn7861video_collaboration_vc3_platform_firmwarewsa8845_firmwaresm8750_firmwarewcd9380video_collaboration_vc3_platformwsa8830snapdragon_429_mobile_firmwaresm8750pwsa8832_firmwarewcn7860_firmwarewcn7861_firmwarewsa8835sm8750p_firmwarewsa8845hwsa8830_firmwarewcn3620fastconnect_7800snapdragon_8_gen_1_mobilefastconnect_6900_firmwareqcs6490wcn7880_firmwareqcs6490_firmwarewcn7880wcd9395_firmwarewcd9390wsa8840_firmwarewcd9395wcn3660b_firmwarewsa8835_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2024-49843
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.11% / 29.33%
||
7 Day CHG~0.00%
Published-03 Feb, 2025 | 16:51
Updated-05 Feb, 2025 | 16:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Graphics_Linux

Memory corruption while processing IOCTL from user space to handle GPU AHB bus error.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwaresm4635wsa8840wcn7860sm7675wsa8845h_firmwarewcn7881_firmwarevideo_collaboration_vc1_platform_firmwarewsa8845qcm6125wcn7881wcn6650_firmwarewcd9380_firmwaresxr2330pwcn6450qca6391_firmwarewcn3950_firmwareqca6391sm8750sm8635pwcn6650video_collaboration_vc5_platformwcn3980wcd9370_firmwaresm8635p_firmwaresnapdragon_480_5g_mobilewcn3950snapdragon_w5\+_gen_1_wearablesw5100wsa8845_firmwarewcd9370qcs7230_firmwarewcd9378sw5100p_firmwaresm7675_firmwarewcn6755_firmwarevideo_collaboration_vc5_platform_firmwaresm7635_firmwaresm8750pwsa8835sm8750p_firmwarewsa8845hsnapdragon_480_5g_mobile_firmwarefastconnect_7800wcn6450_firmwaresnapdragon_4_gen_1_mobileqcs8250_firmwaresnapdragon_695_5g_mobilewcn7880_firmwarewcn3988wcn7880wcd9395_firmwaresm4635_firmwareqcm6125_firmwarewcd9378_firmwareqcs6125sm7635qcs7230sm7675psw5100_firmwarewcn3988_firmwaresm6650_firmwareqcs8250wcd9375_firmwaresm7675p_firmwarewsa8810_firmwarewcd9385_firmwarewsa8810wsa8832wcd9390_firmwaresm8635snapdragon_695_5g_mobile_firmwaresnapdragon_8_gen_3_mobile_firmwarewcd9375sm8635_firmwaresnapdragon_8_gen_3_mobilesm6650wsa8815qcs6125_firmwaresnapdragon_w5\+_gen_1_wearable_firmwarefastconnect_6200_firmwarewcn7861sm8750_firmwarewcd9380wsa8830snapdragon_480\+_5g_mobile_firmwaresnapdragon_480\+_5g_mobilewsa8815_firmwarewsa8832_firmwarewcn7861_firmwarewcn7860_firmwaresw5100pfastconnect_6200wsa8830_firmwarewcn6755wcn3980_firmwarevideo_collaboration_vc1_platformsnapdragon_4_gen_1_mobile_firmwarewcd9390wcd9385wsa8840_firmwarewcd9395wsa8835_firmwaresxr2330p_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2024-45563
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.6||MEDIUM
EPSS-0.07% / 20.89%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:31
Updated-09 May, 2025 | 19:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in Camera Driver

Memory corruption while handling schedule request in Camera Request Manager(CRM) due to invalid link count in the corresponding session.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwaresnapdragon_429_mobile_firmwarefastconnect_7800_firmwarewcn3620_firmwarewcd9385wsa8835sxr2230p_firmwarewcn3660bwcd9385_firmwaresxr2230pwcn3620sdm429w_firmwarewsa8830wsa8830_firmwarewsa8835_firmwaresxr2250p_firmwarewcd9380snapdragon_8_gen_1_mobile_firmwaresnapdragon_429_mobilefastconnect_6900sdm429wfastconnect_6900_firmwaresnapdragon_8_gen_1_mobilewsa8832_firmwarewsa8832wcn3660b_firmwarefastconnect_7800sxr2250pSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-45580
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.16% / 36.52%
||
7 Day CHG~0.00%
Published-03 Mar, 2025 | 10:07
Updated-26 Feb, 2026 | 19:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in DSP Service

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-Snapdragon
CWE ID-CWE-416
Use After Free
CVE-2024-45554
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 14.16%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:31
Updated-26 Feb, 2026 | 18:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in DSP Service

Memory corruption during concurrent SSR execution due to race condition on the global maps list.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwaresnapdragon_429_mobile_firmwarefastconnect_7800_firmwaresnapdragon_888\+_5g_mobilewsa8835sw5100psnapdragon_888\+_5g_mobile_firmwarewcd9385_firmwarewcn3988_firmwaresdm429w_firmwarewsa8830wsa8835_firmwaresnapdragon_8_gen_1_mobile_firmwarewcn3980_firmwarewcn3980snapdragon_888_5g_mobile_firmwareqca6174asw5100_firmwarewsa8832_firmwaresw5100sxr2250pwcn3620_firmwarewcd9385sxr2230p_firmwaresxr2230pwcn3620wcn3988qca6174a_firmwaresxr2250p_firmwarewcd9380wsa8830_firmwaresnapdragon_429_mobilesw5100p_firmwarefastconnect_6900sdm429wfastconnect_6900_firmwaresnapdragon_8_gen_1_mobilesnapdragon_888_5g_mobilewsa8832wcn3660b_firmwarefastconnect_7800wcn3660bSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2024-45561
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.11% / 29.79%
||
7 Day CHG~0.00%
Published-03 Feb, 2025 | 16:51
Updated-12 Feb, 2025 | 20:51
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Windows WLAN Host

Memory corruption while handling IOCTL call from user-space to set latency level.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwarewsa8840sdm429wsc8380xp_firmwarewsa8845h_firmwareqca6420wcn3620_firmwarewsa8845wcd9380_firmwareqca6391_firmwaresc8180x-ad_firmwareqca6391wcn3660bsdm429w_firmwareqca6430wsa8845_firmwarewcd9340_firmwaresc8180x-acafsnapdragon_429_mobile_firmwarewsa8835wsa8845haqt1000_firmwarefastconnect_7800wcd9341_firmwareqcc2076_firmwarewcd9340wcd9341sc8180x-aaab_firmwareqcc2076fastconnect_6900fastconnect_6800snapdragon_7c\+_gen_3_computesnapdragon_429_mobilefastconnect_6700qcc2073snapdragon_7c\+_gen_3_compute_firmwarewsa8810_firmwarewcd9385_firmwarewsa8810fastconnect_6700_firmwaresc8180x-adqcc2073_firmwaresc8280xp-abbb_firmwaresc8180x-aaabqca6420_firmwarewsa8815fastconnect_6200_firmwareqca6430_firmwarewcd9380wsa8830wsa8815_firmwarefastconnect_6200wsa8830_firmwarewcn3620fastconnect_6900_firmwaresc8180x-acaf_firmwaresc8380xpaqt1000fastconnect_6800_firmwarewcd9385wsa8840_firmwarewcn3660b_firmwarewsa8835_firmwaresc8280xp-abbbSnapdragon
CWE ID-CWE-126
Buffer Over-read
CWE ID-CWE-416
Use After Free
CVE-2024-45555
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.02% / 4.71%
||
7 Day CHG~0.00%
Published-06 Jan, 2025 | 10:33
Updated-28 Feb, 2025 | 06:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer Overflow to Buffer Overflow in Automotive OS Platform

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8770p_firmwaresa7775pqca6564aqam8620pqam8255p_firmwaresa8540psa8155pqam8255psrv1hsa7255pqca6688aq_firmwaresrv1h_firmwaresnapdragon_820_automotive_firmwareqca6595au_firmwaresa8145p_firmwareqam8650p_firmwaresa8155_firmwaresrv1lmsm8996au_firmwaresa8255p_firmwaresa8650p_firmwaresa8540p_firmwaresa6155_firmwareqca6595ausa7255p_firmwaresa6145psa8295p_firmwareqca6696sa8295pqca6584au_firmwaresa6150pqca6574au_firmwaresrv1m_firmwaresa8155qca6584ausa6150p_firmwareqca6595sa8155p_firmwareqca6595_firmwareqca6564ausrv1l_firmwaremsm8996auqamsrv1hsa8255psa6155qca6574aqamsrv1m_firmwareqam8775p_firmwareqam8295p_firmwaresa8620p_firmwaresa8650pqam8650psa8770psa8195p_firmwareqca6574a_firmwaresa8620psa8145pqca6564a_firmwaresa8150p_firmwareqca6696_firmwaresa8775psa6155psa9000p_firmwaresa8150pqca6698aqqamsrv1h_firmwaresa6155p_firmwaresrv1mqam8775psa7775p_firmwareqam8295psnapdragon_820_automotiveqam8620p_firmwaresa9000pqca6564au_firmwaresa8775p_firmwareqca6698aq_firmwareqca6574ausa6145p_firmwaresa8195pqamsrv1mqca6688aqSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2024-45570
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.6||MEDIUM
EPSS-0.07% / 20.89%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:32
Updated-09 May, 2025 | 19:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use of Out-of-range Pointer Offset in Camera Driver

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwarewcd9341qca6696_firmwareqam8295psw5100pwcd9385_firmwarewcn3988_firmwaresnapdragon_865\+_5g_mobileqca6426sa9000pwsa8835_firmwareqcs610snapdragon_w5\+_gen_1_wearable_firmwareqam8295p_firmwareqsm8250_firmwarewcn3980qca6696sa8540p_firmwarec-v2x_9150_firmwareqcs410qsm8250wsa8832_firmwaresa6150p_firmwarewcn3620_firmwarewcd9385sa8530pqca6391sa8295psxr2230pwcn3620snapdragon_x55_5g_modem-rf_systemsnapdragon_865_5g_mobile_firmwarefastconnect_6800_firmwaresa6155p_firmwaresnapdragon_429_mobilesa8195p_firmwaresw5100p_firmwaresnapdragon_xr2_5gqca6574au_firmwarewcd9370_firmwaresa8155p_firmwaresdm429wsnapdragon_865\+_5g_mobile_firmwarefastconnect_6900c-v2x_9150snapdragon_8_gen_1_mobilesnapdragon_870_5g_mobile_firmwaresa8145p_firmwarefastconnect_7800wcn3680bwsa8832sa8150psxr2130_firmwarewcn3660bwsa8810wcd9380_firmwaresd865_5g_firmwaresnapdragon_w5\+_gen_1_wearablesnapdragon_429_mobile_firmwarevideo_collaboration_vc1_platform_firmwarewcd9341_firmwarewsa8835qcn9074_firmwaresnapdragon_xr2_5g_firmwarewcd9370sdm429w_firmwarewsa8830sa9000p_firmwareqca6574auvideo_collaboration_vc3_platformsa6145psa8195psa6150psnapdragon_8_gen_1_mobile_firmwarewsa8815_firmwaresnapdragon_865_5g_mobilewcn3980_firmwarewcn3950_firmwaresa8530p_firmwaresa8540psa8295p_firmwaresd865_5gsw5100_firmwarevideo_collaboration_vc3_platform_firmwaresw5100snapdragon_x55_5g_modem-rf_system_firmwaresxr2250psxr2130wsa8810_firmwaresxr2230p_firmwarefastconnect_6800qca6426_firmwaresa8150p_firmwaresnapdragon_870_5g_mobilewcn3950wcn3988wcn3680b_firmwarewsa8830_firmwaresxr2250p_firmwarewcd9380sdx55_firmwarewsa8815qcs610_firmwareqca6436_firmwareqca6436sa6155psa8155psdx55sa8145pvideo_collaboration_vc1_platformfastconnect_6900_firmwaresa6145p_firmwareqcn9074wcn3660b_firmwareqca6391_firmwareqcs410_firmwareSnapdragon
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-823
Use of Out-of-range Pointer Offset
CVE-2024-45571
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.11% / 29.33%
||
7 Day CHG-0.03%
Published-03 Feb, 2025 | 16:51
Updated-12 Feb, 2025 | 20:51
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in WLAN Host Communication

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwareipq6000_firmwareqcm6490_firmwareqcn6224_firmwareipq8076acsr8811_firmwareqca6574au_firmwareqcn6132_firmwareqam8775psa8195pqcs615qca6584ausnapdragon_x65_5g_modem-rf_firmwareqca9889_firmwareqcn5152sxr2230pipq6028qcn5022_firmwareqcc710_firmwaresxr2230p_firmwaresm7635_firmwareipq9574_firmwareqca6574ipq9048qcn5164_firmwareipq8070aqxm8083qcm8550qca6698aq_firmwareqcf8000_firmwareqcn5024_firmwareqca9888immersive_home_216qca8075qcn5122_firmwareqcn6412qcn9100ipq8173ipq8071aqcn6402qcf8001ipq8174_firmwareqcn5164qca8082_firmwaresnapdragon_8_gen_3_mobile_firmwareqam8255p_firmwarewcd9375ipq9570_firmwaresm6650qca8085sa6155pvideo_collaboration_vc3_platformqcn5052ipq5010_firmwareipq5028qcn5052_firmwarewsa8830_firmwareqca8081qcn9022immersive_home_316_firmwaresdx65m_firmwarewcd9385wsa8840_firmwareipq6028_firmwareqfw7124_firmwaresxr2250p_firmwarewsa8840qcn6402_firmwareipq8078a_firmwareqfw7124ipq6000qca6696immersive_home_3210_firmwareqca4024qca6595ipq9048_firmwareqca8337sa8155p_firmwareipq8071a_firmwareqam8650pqca8337_firmwareqcn9012ipq9570qcs8300sxr2330pqcf8000sfp_firmwareqcn9012_firmwareqcs5430_firmwareqcn9070_firmwareqcf8000qam8775p_firmwareqcn5154_firmwaresm8635p_firmwareipq8074aqcm5430qcs9100wcd9378sm7675_firmwareqca8085_firmwaresm8750pwsa8835sm8750p_firmwareqcn9024qca8081_firmwareqcn9074qca6797aq_firmwarefastconnect_7800wcd9340ipq8174qcn6112_firmwarewcd9378_firmwareqca6574auqca8084_firmwareqcn9024_firmwaresm6650_firmwareqca6584au_firmwareqca6777aqfastconnect_6700immersive_home_326qca6696_firmwaresnapdragon_x72_5g_modem-rf_firmwareqcs9100_firmwarewsa8832fastconnect_6700_firmwareipq5302wcd9390_firmwareqcn6274qcs615_firmwaresm8635immersive_home_216_firmwareipq5028_firmwareqca6554a_firmwareipq5332qca8082sm8635_firmwareqca6787aqipq6018_firmwareipq8072a_firmwareqcn9000_firmwareipq5300_firmwareqca6574a_firmwareqcf8000sfpqcn6023sdx55_firmwareqca9888_firmwareqca8075_firmwaresm8750_firmwareqxm8083_firmwareipq5332_firmwareipq6010ipq8078_firmwareqca6554aqca9889qcn5124ipq8070a_firmwareipq9554_firmwareqcs8300_firmwareqcs6490qcn6432_firmwaresxr2330p_firmwarewsa8835_firmwareqca8386_firmwarewcn7860qcs5430qca6787aq_firmwareqcn9074_firmwarewcn7881_firmwareqcn9100_firmwareqcs8550_firmwaresdx65mqcm6490ipq5312wcn7881qcn5154ipq9554qcn6274_firmwaresm8750snapdragon_x65_5g_modem-rfqca8084qcn9274_firmwarecsr8811qcn9000wcn6650ipq8173_firmwarewsa8845_firmwareqcn6412_firmwarevideo_collaboration_vc3_platform_firmwareqca6574_firmwareqcm8550_firmwarewcn6755_firmwarear8035wsa8845hipq9008_firmwaresa6155p_firmwarewcn6450_firmwareqcn6122_firmwareqcn6112wcn7880_firmwareipq9008wcd9395_firmwareqcn5122sm7635fastconnect_6900ipq9574qca6574aqcn9160qcn6432wcd9375_firmwarewcd9385_firmwareqam8650p_firmwareqcn9274qcn6422immersive_home_318_firmwareipq8078aqcn5152_firmwareqca6595_firmwaresdx55immersive_home_214snapdragon_x75_5g_modem-rf_firmwarewcd9380ipq5302_firmwareimmersive_home_326_firmwaresa8155pwcn7861_firmwarewsa8832_firmwareimmersive_home_214_firmwarewcn6755qca6564auimmersive_home_318qca6595au_firmwareqcs6490_firmwareipq8072aqcn6224qca6595auqam8255pipq5010ar8035_firmwaresa8195p_firmwaresm7675wsa8845h_firmwareimmersive_home_3210wsa8845wcn6650_firmwarewcd9380_firmwarewcn6450qcn5124_firmwaresm8635pipq8076wcd9370wcd9340_firmwareimmersive_home_316qca8386qca6678aqsnapdragon_x75_5g_modem-rfqca6564au_firmwareqcn6122qcn6132wcn7880qcn6024qca6797aqqca4024_firmwaresm7675pqcn5022qcs8550sxr2250pqcm5430_firmwareqcn5024sm7675p_firmwareipq6010_firmwareqcn6422_firmwareqcn6024_firmwareipq6018ipq8078ipq5300ipq8076_firmwareqcc710ipq5312_firmwareqcf8001_firmwaresnapdragon_8_gen_3_mobilesnapdragon_x72_5g_modem-rfqcn9160_firmwarewcn7861ipq8074a_firmwarewsa8830qcn6023_firmwarewcn7860_firmwareqca6777aq_firmwareqcn9070qca6678aq_firmwareqca6698aqfastconnect_6900_firmwareqcn9022_firmwareqcn9072_firmwareipq8076a_firmwareqfw7114wcd9390wcd9395qfw7114_firmwareqcn9072wcd9370_firmwareSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2024-45577
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.89%
||
7 Day CHG~0.00%
Published-06 May, 2025 | 08:32
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Input Validation in Camera Driver

Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwaresnapdragon_429_mobile_firmwarefastconnect_7800_firmwarewcn3620_firmwarewsa8835wcn3620sdm429w_firmwarewsa8830wsa8830_firmwarewsa8835_firmwarewcd9380snapdragon_8_gen_1_mobile_firmwaresnapdragon_429_mobilefastconnect_6900sdm429wfastconnect_6900_firmwaresnapdragon_8_gen_1_mobilewcn3660b_firmwarefastconnect_7800wcn3660bSnapdragon
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
  • Previous
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • ...
  • 18
  • 19
  • Next
Details not found