Qualcomm Inc Snapdragon vulnerabilities

CVE-2024-53010 [HIGH] CWE-284 CVE-2024-53010: Memory corruption may occur while attaching VM when the HLOS retains access to VM. Memory corruption may occur while attaching VM when the HLOS retains access to VM.

CVE-2025-27031 [HIGH] CWE-416 CVE-2025-27031: memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accesse memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.

CVE-2025-21485 [HIGH] CWE-367 CVE-2025-21485: Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC. Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC.

CVE-2024-53021 [HIGH] CWE-126 CVE-2024-53021: Information disclosure may occur while processing goodbye RTCP packet from network. Information disclosure may occur while processing goodbye RTCP packet from network.

CVE-2025-21480 [HIGH] CWE-863 CVE-2025-21480: Memory corruption due to unauthorized command execution in GPU micronode while executing specific se Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.

CVE-2024-53019 [HIGH] CWE-126 CVE-2024-53019: Information disclosure may occur while decoding the RTP packet with improper header length for numbe Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.

CVE-2025-21479 [HIGH] CWE-863 CVE-2025-21479: Memory corruption due to unauthorized command execution in GPU micronode while executing specific se Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.

CVE-2025-21463 [HIGH] CWE-126 CVE-2025-21463: Transient DOS while processing the EHT operation IE in the received beacon frame. Transient DOS while processing the EHT operation IE in the received beacon frame.

CVE-2025-21486 [HIGH] CWE-822 CVE-2025-21486: Memory corruption during dynamic process creation call when client is only passing address and lengt Memory corruption during dynamic process creation call when client is only passing address and length of shell binary.

CVE-2024-53020 [HIGH] CWE-126 CVE-2024-53020: Information disclosure may occur while decoding the RTP packet with invalid header extension from ne Information disclosure may occur while decoding the RTP packet with invalid header extension from network.

CVE-2025-27038 [HIGH] CWE-416 CVE-2025-27038: Memory corruption while rendering graphics using Adreno GPU drivers in Chrome. Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.

CVE-2024-53026 [HIGH] CWE-126 CVE-2024-53026: Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call. Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.

CVE-2024-53013 [MEDIUM] CWE-120 CVE-2024-53013: Memory corruption may occur while processing voice call registration with user. Memory corruption may occur while processing voice call registration with user.

CVE-2024-53016 [MEDIUM] CWE-367 CVE-2024-53016: Memory corruption while processing I2C settings in Camera driver. Memory corruption while processing I2C settings in Camera driver.

CVE-2024-53017 [MEDIUM] CWE-823 CVE-2024-53017: Memory corruption while handling test pattern generator IOCTL command. Memory corruption while handling test pattern generator IOCTL command.

CVE-2024-53015 [MEDIUM] CWE-416 CVE-2024-53015: Memory corruption while processing IOCTL command to handle buffers associated with a session. Memory corruption while processing IOCTL command to handle buffers associated with a session.

CVE-2024-53018 [MEDIUM] CWE-367 CVE-2024-53018: Memory corruption may occur while processing the OIS packet parser. Memory corruption may occur while processing the OIS packet parser.

CVE-2024-49846 [CRITICAL] CWE-126 CVE-2024-49846: Memory corruption while decoding of OTA messages from T3448 IE. Memory corruption while decoding of OTA messages from T3448 IE.

CVE-2024-45565 [HIGH] CWE-367 CVE-2024-45565: Memory corruption when blob structure is modified by user-space after kernel verification. Memory corruption when blob structure is modified by user-space after kernel verification.

CVE-2024-45554 [HIGH] CWE-416 CVE-2024-45554: Memory corruption during concurrent SSR execution due to race condition on the global maps list. Memory corruption during concurrent SSR execution due to race condition on the global maps list.