Qamsrv1h Firmware

qamsrv1h_firmware

Vendor: Qualcomm • 266 CVEs

CVEs (266)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-23378 1Qualcomm 18Qam8255p Firmware Qam8650p FirmwareQam8775p Firmware+15 more Oct 16, 2024 Oct 7, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.
CVE-2024-23369 1Qualcomm 118Ar8035 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+115 more Aug 11, 2025 Oct 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVE-2024-38402 1Qualcomm 163Ar8035 Firmware Csra6620 FirmwareCsra6640 Firmware+160 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing IOCTL call for getting group info.
CVE-2024-33060 1Qualcomm 243215 Mobile Firmware 315 5g Iot FirmwareAqt1000 Firmware+240 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when two threads try to map and unmap a single node simultaneously.
CVE-2024-33057 1Qualcomm 170Ar8035 Firmware Csr8811 FirmwareFastconnect 6700 Firmware+167 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2024-33051 1Qualcomm 282315 5g Iot Firmware 9206 Lte FirmwareApq8017 Firmware+279 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-33050 1Qualcomm 252Ar8035 Firmware Ar9380 FirmwareCsr8811 Firmware+249 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2024-33048 1Qualcomm 187Ar8035 Firmware Csr8811 FirmwareFastconnect 6700 Firmware+184 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2024-33045 1Qualcomm 175Ar8035 Firmware Csra6620 FirmwareCsra6640 Firmware+172 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2024-33035 1Qualcomm 89Fastconnect 6200 Firmware Fastconnect 6700 FirmwareFastconnect 6800 Firmware+86 more Oct 3, 2025 Sep 2, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
CVE-2024-33016 1Qualcomm 331315 5g Iot Modem Firmware 9205 Lte Modem FirmwareAqt1000 Firmware+328 more Oct 3, 2025 Sep 2, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 memory corruption when an invalid firehose patch command is invoked.
CVE-2024-23365 1Qualcomm 47Fastconnect 7800 Firmware Qam8255p FirmwareQam8650p Firmware+44 more Oct 3, 2025 Sep 2, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Memory corruption while releasing shared resources in MinkSocket listener thread.
CVE-2024-23364 1Qualcomm 177Ar8035 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+174 more Oct 3, 2025 Sep 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
CVE-2024-23362 1Qualcomm 2309205 Lte Modem Firmware Aqt1000 FirmwareAr8031 Firmware+227 more Oct 3, 2025 Sep 2, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 Cryptographic issue while parsing RSA keys in COBR format.
CVE-2024-33034 1Qualcomm 102Fastconnect 6200 Firmware Fastconnect 6700 FirmwareFastconnect 6900 Firmware+99 more Nov 20, 2024 Aug 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
CVE-2024-33028 1Qualcomm 136Ar8035 Firmware Csra6620 FirmwareCsra6640 Firmware+133 more Nov 20, 2024 Aug 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVE-2024-33026 1Qualcomm 164Ar8035 Firmware Csr8811 FirmwareFastconnect 6700 Firmware+161 more Nov 20, 2024 Aug 5, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
CVE-2024-33025 1Qualcomm 167Csr8811 Firmware Fastconnect 6800 FirmwareFastconnect 6900 Firmware+164 more Nov 20, 2024 Aug 5, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2024-33024 1Qualcomm 179Ar8035 Firmware Csr8811 FirmwareFastconnect 6700 Firmware+176 more Nov 20, 2024 Aug 5, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
CVE-2024-33023 1Qualcomm 151Ar8035 Firmware Csra6620 FirmwareCsra6640 Firmware+148 more Nov 20, 2024 Aug 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

Previous 1...8910...14 Next