Qualcomm Inc Snapdragon vulnerabilities
940 known vulnerabilities affecting qualcomm_inc/snapdragon.
Total CVEs
940
CISA KEV
8
actively exploited
Public exploits
2
Exploited in wild
8
Severity breakdown
CRITICAL52HIGH738MEDIUM150
Vulnerabilities
Page 34 of 47
CVE-2026-24091P3HIGHCVSS 7.2vXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX2026-06-01
CVE-2026-24091 [HIGH] CWE-1286 CVE-2026-24091: Memory corruption while processing fastboot commands with improperly formatted input.
Memory corruption while processing fastboot commands with improperly formatted input.
nvd
CVE-2023-22382P3HIGHCVSS 8.2vAPQ8064AUvMSM8996AU+27 more2023-10-03
CVE-2023-22382 [HIGH] CWE-20 CVE-2023-22382: Weak configuration in Automotive while VM is processing a listener request from TEE.
Weak configuration in Automotive while VM is processing a listener request from TEE.
nvd
CVE-2023-28588P3HIGHCVSS 7.5vAPQ8017vAPQ8064AU+212 more2023-12-05
CVE-2023-28588 [HIGH] CWE-190 CVE-2023-28588: Transient DOS in Bluetooth Host while rfc slot allocation.
Transient DOS in Bluetooth Host while rfc slot allocation.
nvd
CVE-2023-33098P3HIGHCVSS 7.5v315 5G IoT ModemvAQT1000+261 more2023-12-05
CVE-2023-33098 [HIGH] CWE-126 CVE-2023-33098: Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
nvd
CVE-2023-33089P3HIGHCVSS 7.5v315 5G IoT ModemvAQT1000+226 more2023-12-05
CVE-2023-33089 [HIGH] CWE-476 CVE-2023-33089: Transient DOS when processing a NULL buffer while parsing WLAN vdev.
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
nvd
CVE-2022-25735P3HIGHCVSS 7.5vAR8031vCSRA6620+32 more2023-02-12
CVE-2022-25735 [HIGH] CWE-476 CVE-2022-25735: Denial of service in modem due to missing null check while processing TCP or UDP packets from server
Denial of service in modem due to missing null check while processing TCP or UDP packets from server
nvd
CVE-2022-40513P3HIGHCVSS 7.5vCSR8811vIPQ5010+57 more2023-02-12
CVE-2022-40513 [HIGH] CWE-400 CVE-2022-40513: Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qo
Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.
nvd
CVE-2022-25734P3HIGHCVSS 7.5vAR8031vCSRA6620+33 more2023-02-12
CVE-2022-25734 [HIGH] CWE-835 CVE-2022-25734: Denial of service in modem due to missing null check while processing IP packets with padding
Denial of service in modem due to missing null check while processing IP packets with padding
nvd
CVE-2022-22060P3HIGHCVSS 7.5v315 5G IoT ModemvAR8035+69 more2023-06-06
CVE-2022-22060 [HIGH] CWE-617 CVE-2022-22060: Assertion occurs while processing Reconfiguration message due to improper validation
Assertion occurs while processing Reconfiguration message due to improper validation
nvd
CVE-2023-21658P3HIGHCVSS 7.5vAR8035vAR9380+146 more2023-06-06
CVE-2023-21658 [HIGH] CWE-126 CVE-2023-21658: Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
nvd
CVE-2023-21660P3HIGHCVSS 7.5vCSR8811vFastConnect 6700+76 more2023-06-06
CVE-2023-21660 [HIGH] CWE-126 CVE-2023-21660: Transient DOS in WLAN Firmware while parsing FT Information Elements.
Transient DOS in WLAN Firmware while parsing FT Information Elements.
nvd
CVE-2022-33304P3HIGHCVSS 7.5v9205 LTE Modemv9206 LTE Modem+33 more2023-05-02
CVE-2022-33304 [HIGH] CWE-476 CVE-2022-33304: Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP
Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
nvd
CVE-2022-33223P3HIGHCVSS 7.5v9205 LTE Modemv9206 LTE Modem+10 more2023-04-13
CVE-2022-33223 [HIGH] CWE-476 CVE-2022-33223: Transient DOS in Modem due to null pointer dereference while processing the incoming packet with htt
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
nvd
CVE-2024-21454P3HIGHCVSS 7.5vC-V2X 9150vSnapdragon Auto 5G Modem-RF+1 more2024-04-01
CVE-2024-21454 [HIGH] CWE-680 CVE-2024-21454: Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.
Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.
nvd
CVE-2024-33069P3HIGHCVSS 7.5vFastConnect 6800vFastConnect 6900+42 more2024-10-07
CVE-2024-33069 [HIGH] CWE-416 CVE-2024-33069: Transient DOS when transmission of management frame sent by host is not successful and error status
Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.
nvd
CVE-2024-23352P3HIGHCVSS 7.5v315 5G IoT ModemvAR8035+103 more2024-08-05
CVE-2024-23352 [HIGH] CWE-835 CVE-2024-23352: Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.
nvd
CVE-2023-28555P3HIGHCVSS 7.5vAR8035vFastConnect 6200+68 more2023-08-08
CVE-2023-28555 [HIGH] CWE-126 CVE-2023-28555: Transient DOS in Audio while remapping channel buffer in media codec decoding.
Transient DOS in Audio while remapping channel buffer in media codec decoding.
nvd
CVE-2023-33040P3HIGHCVSS 7.5v315 5G IoT ModemvAQT1000+145 more2024-01-02
CVE-2023-33040 [HIGH] CWE-126 CVE-2023-33040: Transient DOS in Data Modem during DTLS handshake.
Transient DOS in Data Modem during DTLS handshake.
nvd
CVE-2023-33080P3HIGHCVSS 7.5v315 5G IoT Modemv9206 LTE Modem+356 more2023-12-05
CVE-2023-33080 [HIGH] CWE-126 CVE-2023-33080: Transient DOS while parsing a vender specific IE (Information Element) of reassociation response man
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
nvd
CVE-2024-33018P3HIGHCVSS 7.5vAR8035vCSR8811+149 more2024-08-05
CVE-2024-33018 [HIGH] CWE-126 CVE-2024-33018: Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping acti
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
nvd