ByteOS Network

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

Vendor-Qualcomm Technologies, Inc.

Product-wcn3980 sw5100 sw5100p_firmware wcn3660b wsa8830 wsa8830_firmware sw5100_firmware wcn3680b wcn3988_firmware qcs8550_firmware wcn3988 wcn3660b_firmware wsa8835_firmware qcs8550 wsa8835 wcn3980_firmware wcn3680b_firmware sw5100p Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2023-43512

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.29% / 52.46%

7 Day CHG~0.00%

Published-02 Jan, 2024 | 05:38

Updated-02 Aug, 2024 | 19:44

Buffer Over-read in Qualcomm ESL

Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer.

Vendor-Qualcomm Technologies, Inc.

Product-qcn7606 qcn7606_firmware Snapdragon qcn7606_firmware

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2024-33057

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.29% / 52.31%

7 Day CHG~0.00%

Published-02 Sep, 2024 | 10:22

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in WLAN Host Communication

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2024-33043

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.11% / 28.98%

7 Day CHG~0.00%

Published-02 Sep, 2024 | 10:22

Updated-20 Dec, 2024 | 14:33

Buffer Over-read in FM Host

Transient DOS while handling PS event when Program Service name length offset value is set to 255.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2024-33020

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.41% / 60.81%

7 Day CHG~0.00%

Published-05 Aug, 2024 | 14:21

Updated-20 Nov, 2024 | 19:24

Buffer Over-read in WLAN HOST

Transient DOS while processing TID-to-link mapping IE elements.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2024-33013

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.41% / 60.81%

7 Day CHG~0.00%

Published-05 Aug, 2024 | 14:21

Updated-26 Nov, 2024 | 16:49

Buffer Over-read in WLAN Host

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2024-33067

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.1||MEDIUM

EPSS-0.07% / 22.13%

7 Day CHG~0.00%

Published-06 Jan, 2025 | 10:33

Updated-11 Aug, 2025 | 15:06

Buffer Over-read in Audio

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2025-27065

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.07% / 20.28%

7 Day CHG+0.01%

Published-06 Aug, 2025 | 07:26

Updated-20 Aug, 2025 | 19:46

Buffer Over-read in WLAN Firmware

Transient DOS while processing a frame with malformed shared-key descriptor.

Vendor-Qualcomm Technologies, Inc.

Product-sm8735_firmware ipq5312_firmware qca6574 sm8750p_firmware ssg2115p_firmware sa7255p sa7775p qam8650p_firmware ipq5332 wcd9395 sxr2330p wsa8845h_firmware ipq5424_firmware ipq9048 qca8084_firmware wcd9378 qca8082_firmware qca6595_firmware qca0000_firmware qca6678aq qcc2073_firmware snapdragon_865_5g_mobile_platform_firmware ipq9008 wsa8835_firmware qca6698aq_firmware qcn6402_firmware snapdragon_ar2_gen_1_platform snapdragon_8_gen_3_mobile_platform sm7635 qca6426 qamsrv1h_firmware qcn6432_firmware wcn6450 qca6574a_firmware qca8085_firmware sxr2230p_firmware sxr2250p_firmware qfw7124 snapdragon_865_5g_mobile_platform wcd9370 qca8337 qca8102 snapdragon_8\+_gen_2_mobile_platform qca6436_firmware wcn7861 snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmware qca8112 fastconnect_6800_firmware wsa8815_firmware wsa8845_firmware ipq5302 qca6391_firmware qcc2073 wcd9375 sd_8_gen1_5g qca8384 qcn6274_firmware qcn5124_firmware qca6564au snapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmware immersive_home_326_platform qcc2076_firmware qca6574au snapdragon_x75_5g_modem-rf_system qcn9074_firmware qca6584au_firmware qamsrv1m_firmware snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)sa9000p qca8112_firmware sm8750p snapdragon_ar1_gen_1_platform_firmware qca8080 sm7675 qca6688aq wcn7750 qca6787aq_firmware qca6554a_firmware qca6584au sc8380xp qca8075_firmware qmp1000 qam8255p_firmware qcn9011 qca6787aq qca6688aq_firmware ipq5300 qca8085 wcd9380_firmware sd_8_gen1_5g_firmware qca6574a qca6797aq_firmware wsa8830_firmware qcs8550 wsa8832_firmware qca8384_firmware qcs8550_firmware ssg2125p snapdragon_xr2_5g_platform qcm8550 qcm8550_firmware ipq5424 wsa8835 qca8081_firmware fastconnect_6800 qcn5224 qca6426_firmware qcn6224 qca8102_firmware wcn7860 qxm8083 sa8620p_firmware sd865_5g_firmware qca6595au_firmware qca6696_firmware wcd9385_firmware immersive_home_3210_platform wcn6740 wcd9370_firmware sm8650q_firmware wsa8815 qca6574au_firmware sm8750_firmware wcn6755 qca6595au sa7775p_firmware sa8255p wsa8845h wcd9390_firmware wsa8810 snapdragon_x75_5g_modem-rf_system_firmware wcn6650 qca8101_firmware snapdragon_ar1_gen_1_platform_\"luna1\"ipq9008_firmware ipq9574 sa8775p_firmware srv1h_firmware qcn9074 fastconnect_7800_firmware qca8081 wcd9340_firmware ipq9574_firmware qca8386 sm6650p_firmware qca8111 sm8735 sm8650q qcn9024 wcn7881 qxm8083_firmware sm8635p qmp1000_firmware qca0000 ssg2115p ipq5332_firmware wcn6755_firmware qcn9000 qcn6224_firmware qam8255p wcn7880_firmware snapdragon_ar1_gen_1_platform sm8635p_firmware qam8775p_firmware wsa8810_firmware qcn6422_firmware snapdragon_8\+_gen_2_mobile_platform_firmware qca8101 qca6678aq_firmware qca6696 sm8550p qcc710 sm8750 qca6391 qcn9274_firmware qam8775p sm6650_firmware qca6554a ipq5312 snapdragon_ar2_gen_1_platform_firmware qcn5224_firmware snapdragon_8_gen_2_mobile_platform_firmware qca6777aq_firmware snapdragon_xr2_5g_platform_firmware sxr2250p wcn7861_firmware snapdragon_x72_5g_modem-rf_system_firmware ssg2125p_firmware wsa8840_firmware qcc710_firmware sa8620p qca8080_firmware immersive_home_326_platform_firmware sxr2330p_firmware sm8550p_firmware wcd9380 fastconnect_6900_firmware snapdragon_8_gen_1_mobile_platform_firmware srv1m_firmware qam8650p sm7675_firmware ipq5302_firmware sxr1230p_firmware qca8082 sm7675p qca8385_firmware ipq9554_firmware ipq9048_firmware qamsrv1h snapdragon_8_gen_1_mobile_platform qca6777aq qamsrv1m sxr2230p qca8084 qca8075 qcn6402 sa9000p_firmware sm7675p_firmware ipq9570 sm8635_firmware qcc2076 qcn9000_firmware ipq9570_firmware ar8035 qcn9160 snapdragon_ar1_gen_1_platform_\"luna1\"_firmware wcd9395_firmware wcn6740_firmware wcd9375_firmware sm6650 sa8255p_firmware ar8035_firmware wsa8845 sa8775p srv1h fastconnect_7800 wsa8840 snapdragon_8_gen_3_mobile_platform_firmware qca8337_firmware wsa8830 wsa8832 snapdragon_8_gen_2_mobile_platform srv1m qcn6432 sxr1230p wcd9385 qcn6412_firmware qcn5124 sa8650p_firmware snapdragon_auto_5g_modem-rf_gen_2 wcn6650_firmware snapdragon_x72_5g_modem-rf_system qca8385 qca6436 sa7255p_firmware qca8386_firmware wcn7860_firmware qcn9160_firmware sm8635 sc8380xp_firmware qcf8001_firmware qcn9012 qcf8000_firmware qca6797aq snapdragon_870_5g_mobile_platform_\(sm8250-ac\)qcn6274 wcn7881_firmware qfw7114 sm6650p qfw7114_firmware wcd9340 wcd9390 qcf8000 sa8770p_firmware qcn6422 qca6564au_firmware snapdragon_auto_5g_modem-rf_gen_2_firmware sd865_5g qca6595 wcn7880 wcn6450_firmware fastconnect_6900 qcn9024_firmware qcn9274 qcn9011_firmware qcn6412 ipq5300_firmware sa8650p sa8770p wcd9378_firmware qca6574_firmware qca6698aq immersive_home_3210_platform_firmware ipq9554 qfw7124_firmware sm7635_firmware qca8111_firmware qcn9012_firmware wcn7750_firmware qcf8001 Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2022-25730

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.09% / 25.65%

7 Day CHG~0.00%

Published-04 Apr, 2023 | 04:46

Updated-03 Aug, 2024 | 04:49

Buffer Over-read in MODEM

Information disclosure in modem due to improper check of IP type while processing DNS server query

Vendor-Qualcomm Technologies, Inc.

Product-wcd9306 wcd9380_firmware wsa8830 snapdragon_wear_1300 ssg2125p sxr2230p_firmware mdm8207 snapdragon_wear_1200 wcd9330 snapdragon_x5_lte_modem_firmware wsa8832_firmware wcn785x-5 wcn685x-5 qca4004_firmware wcn785x-1_firmware qts110 wcd9306_firmware sxr1230p_firmware wsa8835 wcd9380 wsa8832 snapdragon_ar2_gen_1_platform_firmware snapdragon_wear_1100_firmware qca4010 snapdragon_wear_1200_firmware ssg2125p_firmware ssg2115p snapdragon_ar2_gen_1_platform mdm9206 wcn685x-5_firmware wcn685x-1_firmware sxr1230p wcd9385 wcn685x-1 snapdragon_x5_lte_modem mdm8207_firmware snapdragon_wear_1100 mdm9205_firmware wcd9385_firmware mdm9205 mdm9206_firmware mdm9207_firmware qca4004 sxr2230p wsa8830_firmware wsa8835_firmware ssg2115p_firmware snapdragon_wear_1300_firmware wcn785x-5_firmware wcd9330_firmware qca4010_firmware wcn785x-1 mdm9207 qts110_firmware Snapdragon fastconnect_7800 wcd9306 snapdragon_1100_wearable_platform wsa8830 sxr1230p ssg2125p wcd9385 9207_lte_modem mdm8207 wcd9330 9206_lte_modem fastconnect_6900 snapdragon_ar2_gen1_platform 9205_lte_modem qca4004 sxr2230p qts110 wsa8835 wcd9380 wsa8832 snapdragon_1200_wearable_platform snapdragon_x5_lte_firmware qca4010 snapdragon_wear_1300_platform ssg2115p

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-25726

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.09% / 25.65%

7 Day CHG~0.00%

Published-04 Apr, 2023 | 04:46

Updated-03 Aug, 2024 | 04:49

Buffer Over-read in MODEM

Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet

Vendor-Qualcomm Technologies, Inc.

Product-wcd9306 wcd9380_firmware wsa8830 snapdragon_wear_1300 ssg2125p sxr2230p_firmware mdm8207 snapdragon_wear_1200 wcd9330 snapdragon_x5_lte_modem_firmware wsa8832_firmware wcn785x-5 wcn685x-5 qca4004_firmware wcn785x-1_firmware qts110 wcd9306_firmware sxr1230p_firmware wsa8835 wcd9380 wsa8832 snapdragon_wear_1100_firmware snapdragon_ar2_gen_1_platform_firmware snapdragon_wear_1200_firmware ssg2125p_firmware ssg2115p snapdragon_ar2_gen_1_platform mdm9206 wcn685x-5_firmware wcn685x-1_firmware sxr1230p wcd9385 wcn685x-1 snapdragon_x5_lte_modem mdm8207_firmware snapdragon_wear_1100 mdm9205_firmware wcd9385_firmware mdm9205 mdm9206_firmware mdm9207_firmware qca4004 sxr2230p wsa8830_firmware wsa8835_firmware ssg2115p_firmware snapdragon_wear_1300_firmware wcn785x-5_firmware wcd9330_firmware wcn785x-1 mdm9207 qts110_firmware Snapdragon 9205_lte_modem_firmware wcd9380_firmware snapdragon_wear_1300_platform_firmware 9207_lte_modem_firmware sxr2230p_firmware snapdragon_x5_lte_modem_firmware mdm8207_firmware wsa8832_firmware wcd9385_firmware fastconnect_6900_firmware qca4004_firmware snapdragon_1200_wearable_platform_firmware snapdragon_1100_wearable_platform_firmware 9206_lte_modem_firmware wsa8830_firmware wcd9306_firmware sxr1230p_firmware wsa8835_firmware fastconnect_7800_firmware ssg2115p_firmware snapdragon_ar2_gen_1_platform_firmware wcd9330_firmware ssg2125p_firmware qts110_firmware

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-25732

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.24% / 46.89%

7 Day CHG~0.00%

Published-09 Feb, 2023 | 06:58

Updated-03 Aug, 2024 | 04:49

Buffer Over-read in MODEM

Information disclosure in modem due to buffer over read in dns client due to missing length check

Vendor-Qualcomm Technologies, Inc.

Product-wcd9380_firmware wsa8830 ssg2125p sxr2230p_firmware wcd9330 wcn6856_firmware csra6620 qca4024_firmware wsa8835 sxr1230p_firmware wcd9380 csra6620_firmware ssg2125p_firmware ssg2115p mdm9206 csra6640_firmware wcn6855_firmware sxr1230p wcd9335_firmware wcn3980 wcd9385_firmware mdm9205 mdm9206_firmware wsa8815 sxr2230p qca4020 wcn7850 wcn3999_firmware wcn3980_firmware wcd9330_firmware mdm9207 wcd9306 mdm8207 wcn3999 wcn7851 ar8031_firmware wsa8832_firmware qca4004_firmware mdm9607_firmware qcs405 qts110 mdm9607 wcd9306_firmware wsa8810_firmware wsa8810 wsa8832 qca4020_firmware wcn6855 wcd9335 wcn7851_firmware wcn6856 wcd9385 ar8031 qcs405_firmware mdm8207_firmware mdm9205_firmware qca4024 mdm9207_firmware qca4004 csra6640 wsa8830_firmware wsa8815_firmware wsa8835_firmware wcn7850_firmware ssg2115p_firmware qts110_firmware Snapdragon wcd9380_firmware sxr2230p_firmware ar8031_firmware wsa8832_firmware wcn6856_firmware qca4004_firmware mdm9607_firmware qca4024_firmware wcd9306_firmware sxr1230p_firmware wsa8810_firmware qca4020_firmware ssg2125p_firmware csra6620_firmware wcn7851_firmware wcn6855_firmware csra6640_firmware qcs405_firmware wcd9335_firmware mdm8207_firmware mdm9205_firmware wcd9385_firmware mdm9206_firmware mdm9207_firmware wsa8830_firmware wsa8815_firmware wsa8835_firmware wcn7850_firmware ssg2115p_firmware wcn3999_firmware wcn3980_firmware wcd9330_firmware qts110_firmware

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-25728

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.24% / 46.89%

7 Day CHG~0.00%

Published-09 Feb, 2023 | 06:58

Updated-03 Aug, 2024 | 04:49

Buffer Over-read in MODEM

Information disclosure in modem due to buffer over-read while processing response from DNS server

Vendor-Qualcomm Technologies, Inc.

Product-wcd9380_firmware wsa8830 ssg2125p sxr2230p_firmware wcd9330 wcn6856_firmware csra6620 qca4024_firmware wsa8835 sxr1230p_firmware wcd9380 csra6620_firmware ssg2125p_firmware ssg2115p mdm9206 csra6640_firmware wcn6855_firmware sxr1230p wcd9335_firmware wcn3980 wcn3998 wcd9385_firmware mdm9205 mdm9206_firmware wsa8815 sxr2230p qca4020 wcn7850 wcn3999_firmware wcn3998_firmware wcn3980_firmware wcd9330_firmware mdm9207 wcd9306 mdm8207 wcn3999 wcn7851 ar8031_firmware wsa8832_firmware qca4004_firmware mdm9607_firmware qcs405 qts110 mdm9607 wcd9306_firmware wsa8810_firmware wsa8810 wsa8832 qca4020_firmware wcn6855 wcd9335 wcn7851_firmware wcn6856 wcd9385 ar8031 qcs405_firmware mdm8207_firmware mdm9205_firmware qca4024 mdm9207_firmware qca4004 csra6640 wsa8830_firmware wsa8815_firmware wsa8835_firmware wcn7850_firmware ssg2115p_firmware qts110_firmware Snapdragon wcd9380_firmware sxr2230p_firmware ar8031_firmware wsa8832_firmware wcn6856_firmware qca4004_firmware mdm9607_firmware qca4024_firmware wcd9306_firmware sxr1230p_firmware wsa8810_firmware qca4020_firmware ssg2125p_firmware csra6620_firmware wcn7851_firmware wcn6855_firmware csra6640_firmware qcs405_firmware wcd9335_firmware mdm8207_firmware mdm9205_firmware wcd9385_firmware mdm9206_firmware mdm9207_firmware wsa8830_firmware wsa8815_firmware wsa8835_firmware wcn7850_firmware ssg2115p_firmware wcn3999_firmware wcn3998_firmware wcn3980_firmware wcd9330_firmware qts110_firmware

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-25738

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.24% / 46.89%

7 Day CHG~0.00%

Published-09 Feb, 2023 | 06:58

Updated-03 Aug, 2024 | 04:49

Buffer Over-read in MODEM

Information disclosure in modem due to buffer over-red while performing checksum of packet received

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-25747

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.2||HIGH

EPSS-0.08% / 22.67%

7 Day CHG~0.00%

Published-04 Apr, 2023 | 04:46

Updated-11 Feb, 2025 | 14:22

Buffer Over-read in MODEM

Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-21457

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.1||MEDIUM

EPSS-0.02% / 3.36%

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:25

Updated-06 Aug, 2025 | 20:23

Buffer Over-read in Automotive OS Platform Android

Information disclosure while opening a fastrpc session when domain is not sanitized.

Vendor-Qualcomm Technologies, Inc.

Product-Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2017-17772

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.8||HIGH

EPSS-0.15% / 35.94%

7 Day CHG~0.00%

Published-26 Nov, 2024 | 08:55

Updated-09 Jan, 2025 | 21:01

Multiple buffer overread vulnerabilities in WLAN

In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.

Vendor-Qualcomm Technologies, Inc.

Product-sd_820a sd_845 sd_625_firmware sd_820 sd_625 sd_850 sd_820a_firmware sd_835_firmware sd_450_firmware sd_820_firmware sd_835 sd_450 sd_850_firmware sd_845_firmware Snapdragon

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-125

Out-of-bounds Read

CVE-2025-47402

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.01% / 0.48%

7 Day CHG~0.00%

Published-02 Feb, 2026 | 15:20

Updated-11 Feb, 2026 | 19:36

Buffer Over-read in WLAN Firmware

Transient DOS when processing a received frame with an excessively large authentication information element.

Vendor-Qualcomm Technologies, Inc.

Product-sm7675 snapdragon_x72_5g_modem-rf_firmware wcd9378c qcn6224 snapdragon_8_gen_3_mobile wsa8845 x2000077_firmware sm8750p x2000094 qcn9011_firmware sm7675_firmware qca6554a_firmware sa8620p sm8635_firmware sa8255p qca6797aq qcs8550 snapdragon_auto_5g_modem-rf_gen_2_firmware fwa_gen_3_ultra_firmware qca6554a wcd9375 wsa8832 ssg2115p sxr1230p fastconnect_7800 qca8337_firmware sa7775p ssg2115p_firmware x2000090 sxr2250p wsa8830 lemansau_firmware wsa8835_firmware qca6595 wcd9385_firmware qca6698aq qca6584au_firmware qamsrv1h wcd9390 qca6595au qcc2073_firmware wcn7880 x2000092_firmware sm8635 qcn9011 xg101002_firmware qcc2073 wsa8845h_firmware qcn9012_firmware qca6574a qca8081 srv1h ar8035_firmware sm7675p cologne wsa8845h lemansau fastconnect_6900_firmware wcd9340_firmware qcc2076 snapdragon_x72_5g_modem-rf cologne_firmware qca6698aq_firmware sa7255p fastconnect_6900 wcd9340 wcd9370_firmware sa7255p_firmware qca6698au_firmware qca6584au qca6777aq xg101032 snapdragon_auto_5g_modem-rf_gen_2 wsa8832_firmware qca6595au_firmware sm7675p_firmware sm8750p_firmware qamsrv1m_firmware wcd9390_firmware qfw7124 sar2130p_firmware sm8650q_firmware qam8255p_firmware wcn7860_firmware orne_firmware wcn7860 qamsrv1h_firmware x2000092 snapdragon_8_elite qmp1000_firmware sxr1230p_firmware orne qca6688aq qmp1000 snapdragon_x75_5g_modem-rf_firmware srv1m lemans_au_lgit_firmware wcd9395 qcn9012 wcn7861 qca6787aq_firmware ar8035 qca6797aq_firmware wsa8845_firmware sa8770p_firmware sa7775p_firmware wsa8840_firmware qfw7114 qamsrv1m sm8635p qca6678aq_firmware qcn6224_firmware qca6391_firmware qca6696_firmware qcc710 sm8635p_firmware wcd9378_firmware sa9000p wcn7861_firmware snapdragon_x75_5g_modem-rf wcd9378c_firmware wcd9385 lemans_au_lgit sa8255p_firmware qca6574 wcn6755 x2000086_firmware ssg2125p wcn7881_firmware srv1m_firmware qca6777aq_firmware qfw7114_firmware palawan25 qca6698au qca6574a_firmware qca6595_firmware xg101039_firmware wcn6755_firmware wcd9370 qca8337 wcn7880_firmware x2000077 qca6574au wcn7881 qcs8550_firmware snapdragon_8_gen_3_mobile_firmware sar2130p qca8081_firmware sxr2250p_firmware qca6564au_firmware x2000090_firmware qca6787aq sa9000p_firmware palawan25_firmware qcc710_firmware qam8255p qca6391 srv1h_firmware sa8620p_firmware qca6574au_firmware qca6678aq wcd9380 snapdragon_8_elite_firmware qca6688aq_firmware sm8650q wsa8835 wcd9380_firmware wcd9375_firmware wsa8840 fwa_gen_3_ultra wcd9378 qcc2076_firmware qcn6274_firmware xg101032_firmware sa8770p wsa8830_firmware qcn6274 qfw7124_firmware xg101002 xg101039 wcd9395_firmware qca6564au fastconnect_7800_firmware qca6696 x2000086 x2000094_firmware ssg2125p_firmware qca6574_firmware Snapdragon

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-126

Buffer Over-read

CVE-2025-27029

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.09% / 25.39%

7 Day CHG+0.01%

Published-03 Jun, 2025 | 05:53

Updated-20 Aug, 2025 | 20:25

Buffer Over-read in WLAN HAL

Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.

Vendor-Qualcomm Technologies, Inc.

Product-sm8735_firmware ipq5312_firmware wcn7880_firmware sm8750p_firmware qcn6422_firmware qca8101 ipq5332 wcd9395 wsa8845h_firmware sm8750 ipq5424_firmware qcn9274_firmware ipq9048 qca8084_firmware wcd9378 qca8082_firmware qca0000_firmware sm6650_firmware ipq9008 wsa8835_firmware ipq5312 qcn6402_firmware qcn5224_firmware snapdragon_8_gen_3_mobile_platform sm7635 wcn7861_firmware wsa8840_firmware qcn6432_firmware wcn6450 qca8085_firmware qca8080_firmware immersive_home_326_platform_firmware qca8102 wcn7861 qca8112 wsa8845_firmware ipq5302 ipq5302_firmware qca8384 qcn5124_firmware qca8082 qca8385_firmware ipq9554_firmware immersive_home_326_platform ipq9048_firmware qcn9074_firmware qca8112_firmware sm8750p wcn6755_firmware qca8080 qca8075 qca8084 qcn6402 wcn7750 ipq9570 qca8075_firmware qmp1000 qcn9000_firmware ipq9570_firmware qcn9160 ipq5300 qca8085 wcd9395_firmware wsa8830_firmware sm6650 wsa8832_firmware qca8384_firmware ipq5424 wsa8835 wsa8845 wsa8840 fastconnect_7800 snapdragon_8_gen_3_mobile_platform_firmware qca8081_firmware wsa8830 wsa8832 qcn5224 qca8102_firmware qcn6432 qxm8083 wcn7860 qcn6412_firmware qcn5124 wcn6650_firmware immersive_home_3210_platform qca8385 qca8386_firmware wcn7860_firmware qcn9160_firmware sm8750_firmware wcn6755 wsa8845h wcd9390_firmware qcf8001_firmware qcn9012 qcf8000_firmware wcn6650 wcn7881_firmware qca8101_firmware sm6650p ipq9008_firmware wcd9390 ipq9574 qcf8000 qcn9074 qcn6422 fastconnect_7800_firmware qca8081 wcn7880 ipq9574_firmware wcn6450_firmware qca8386 sm6650p_firmware qcn9024_firmware qca8111 sm8735 qcn9274 qcn6412 qcn9024 ipq5300_firmware wcn7881 qxm8083_firmware qmp1000_firmware wcd9378_firmware immersive_home_3210_platform_firmware qca0000 ipq9554 sm7635_firmware ipq5332_firmware qca8111_firmware qcn9012_firmware qcn9000 wcn7750_firmware qcf8001 Snapdragon

CWE ID-CWE-126

Buffer Over-read

CVE-2025-27045

Matching Score-6

Assigner-Qualcomm, Inc.

View Details

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.1||MEDIUM

EPSS-0.02% / 5.07%

7 Day CHG~0.00%

Published-09 Oct, 2025 | 03:17

Updated-05 Nov, 2025 | 18:31

Buffer Over-read in Video

Information disclosure while processing batch command execution in Video driver.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-126

Buffer Over-read

CVE-2025-59600

Credits

Buffer Over-read in Graphics

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs