Snapdragon 870 5g Firmware

snapdragon_870_5g_firmware

Vendor: Qualcomm • 29 CVEs

CVEs (29)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-21424 1Qualcomm 233215 Firmware 315 5g Iot Modem FirmwareAqt1000 Firmware+230 more Aug 11, 2025 Mar 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while calling the NPU driver APIs concurrently.
CVE-2024-53027 1Qualcomm 206205 Firmware Apq8017 FirmwareAr8035 Firmware+203 more Aug 11, 2025 Mar 3, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS may occur while processing the country IE.
CVE-2024-53014 1Qualcomm 244215 Firmware 315 5g Iot Modem FirmwareAqt1000 Firmware+241 more Aug 11, 2025 Mar 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption may occur while validating ports and channels in Audio driver.
CVE-2024-43057 1Qualcomm 151Ar8035 Firmware C V2x 9150 FirmwareCsr8811 Firmware+148 more Aug 11, 2025 Mar 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing command in Glink linux.
CVE-2024-43056 1Qualcomm 187Aqt1000 Firmware Ar8035 FirmwareFastconnect 6200 Firmware+184 more Aug 11, 2025 Mar 3, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Transient DOS during hypervisor virtual I/O operation in a virtual machine.
CVE-2024-43051 1Qualcomm 237Aqt1000 Firmware Ar8031 FirmwareAr8035 Firmware+234 more Aug 11, 2025 Mar 3, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Information disclosure while deriving keys for a session for any Widevine use case.
CVE-2024-38426 1Qualcomm 163205 Firmware 215 Firmware315 5g Iot Firmware+160 more Aug 11, 2025 Mar 3, 2025 N/A· v4 5.3 MEDIUM· v3 N/A· v2 While processing the authentication message in UE, improper authentication may lead to information disclosure.
CVE-2024-33051 1Qualcomm 282315 5g Iot Firmware 9206 Lte FirmwareApq8017 Firmware+279 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-33042 1Qualcomm 196205 Firmware 215 FirmwareApq8017 Firmware+193 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when Alternative Frequency offset value is set to 255.
CVE-2023-33021 1Qualcomm 163Apq8064au Firmware Aqt1000 FirmwareAr8035 Firmware+160 more Nov 21, 2024 Sep 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in Graphics while processing user packets for command submission.
CVE-2023-33015 1Qualcomm 190315 5g Firmware Aqt1000 FirmwareAr8035 Firmware+187 more Nov 21, 2024 Sep 5, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
CVE-2023-28581 1Qualcomm 25Fastconnect 6800 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+22 more Nov 21, 2024 Sep 5, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
CVE-2023-28573 1Qualcomm 195315 5g Iot Firmware Aqt1000 FirmwareAr8035 Firmware+192 more Nov 21, 2024 Sep 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in WLAN HAL while parsing WMI command parameters.
CVE-2023-28567 1Qualcomm 285315 5g Iot Firmware Aqt1000 FirmwareAr8031 Firmware+282 more Nov 21, 2024 Sep 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in WLAN HAL while handling command through WMI interfaces.
CVE-2023-28577 1Qualcomm 30Fastconnect 6800 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+27 more Nov 21, 2024 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEAS...Show more In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.Show less
CVE-2023-28576 1Qualcomm 30Fastconnect 6800 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+27 more Nov 21, 2024 Aug 8, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), caus...Show more The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to out-of-bounds read/write issues.Show less
CVE-2023-28575 1Qualcomm 59205 Firmware 215 FirmwareAqt1000 Firmware+56 more Nov 21, 2024 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.
CVE-2023-28542 1Qualcomm 183315 5g Iot Firmware Apq8064au FirmwareAqt1000 Firmware+180 more Aug 11, 2025 Jul 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory Corruption in WLAN HOST while fetching TX status information.
CVE-2023-28541 1Qualcomm 198Aqt1000 Firmware Ar8031 FirmwareAr9380 Firmware+195 more Aug 11, 2025 Jul 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
CVE-2023-24854 1Qualcomm 158215 Firmware Ar8035 FirmwareCsra6620 Firmware+155 more Aug 11, 2025 Jul 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.

12 Next