Qualcomm Inc Snapdragon vulnerabilities
940 known vulnerabilities affecting qualcomm_inc/snapdragon.
Total CVEs
940
CISA KEV
8
actively exploited
Public exploits
2
Exploited in wild
8
Severity breakdown
CRITICAL52HIGH738MEDIUM150
Vulnerabilities
Page 42 of 47
CVE-2024-33039P4MEDIUMCVSS 6.7vQAM8255PvQAM8650P+20 more2024-12-02
CVE-2024-33039 [MEDIUM] CWE-822 CVE-2024-33039: Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the
Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.
nvd
CVE-2024-33032P4MEDIUMCVSS 6.7vC-V2X 9150vFastConnect 6200+67 more2024-11-04
CVE-2024-33032 [MEDIUM] CWE-129 CVE-2024-33032: Memory corruption when the user application modifies the same shared memory asynchronously when kern
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.
nvd
CVE-2024-23377P4MEDIUMCVSS 6.7vFastConnect 6900vFastConnect 7800+37 more2024-11-04
CVE-2024-23377 [MEDIUM] CWE-823 CVE-2024-23377: Memory corruption while invoking IOCTL command from user-space, when a user modifies the original pa
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver.
nvd
CVE-2024-38405P4MEDIUMCVSS 6.5vAR8035vFastConnect 6700+97 more2024-11-04
CVE-2024-38405 [MEDIUM] CWE-126 CVE-2024-38405: Transient DOS while processing the CU information from RNR IE.
Transient DOS while processing the CU information from RNR IE.
nvd
CVE-2025-59601P4MEDIUMCVSS 6.5vQCA70052026-06-01
CVE-2025-59601 [MEDIUM] CWE-1230 CVE-2025-59601: Information Disclosure when resetting device to factory default settings through powerline interface
Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.
nvd
CVE-2025-27045P4MEDIUMCVSS 6.1vFastConnect 6900vFastConnect 7800+16 more2025-10-09
CVE-2025-27045 [MEDIUM] CWE-126 CVE-2025-27045: Information disclosure while processing batch command execution in Video driver.
Information disclosure while processing batch command execution in Video driver.
nvd
CVE-2025-47370P4MEDIUMCVSS 6.5vAR8035vCSRB31024+134 more2025-11-04
CVE-2025-47370 [MEDIUM] CWE-617 CVE-2025-47370: Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
nvd
CVE-2023-33065P4HIGHCVSS 7.1vAQT1000vAR8035+102 more2024-02-06
CVE-2023-33065 [HIGH] CWE-126 CVE-2023-33065: Information disclosure in Audio while accessing AVCS services from ADSP payload.
Information disclosure in Audio while accessing AVCS services from ADSP payload.
nvd
CVE-2023-21629P4MEDIUMCVSS 6.8v315 5G IoT ModemvAPQ8017+210 more2023-07-04
CVE-2023-21629 [MEDIUM] CWE-415 CVE-2023-21629: Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
nvd
CVE-2024-45556P4MEDIUMCVSS 6.5vFastConnect 6900vFastConnect 7800+58 more2025-04-07
CVE-2024-45556 [MEDIUM] CWE-1262 CVE-2024-45556: Cryptographic issue may arise because the access control configuration permits Linux to read key reg
Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.
nvd
CVE-2024-45551P4MEDIUMCVSS 6.2vAQT1000vAR8035+239 more2025-04-07
CVE-2024-45551 [MEDIUM] CWE-1390 CVE-2024-45551: Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
nvd
CVE-2025-27030P4MEDIUMCVSS 6.1vC-V2X 9150vQAM8295P+39 more2025-09-24
CVE-2025-27030 [MEDIUM] CWE-126 CVE-2025-27030: information disclosure while invoking calibration data from user space to update firmware size.
information disclosure while invoking calibration data from user space to update firmware size.
nvd
CVE-2025-27064P4MEDIUMCVSS 6.1vFastConnect 6900vFastConnect 7800+75 more2025-11-04
CVE-2025-27064 [MEDIUM] CWE-126 CVE-2025-27064: Information disclosure while registering commands from clients with diag through diagHal.
Information disclosure while registering commands from clients with diag through diagHal.
nvd
CVE-2025-47331P4MEDIUMCVSS 6.1vAR8031vAR8035+297 more2026-01-07
CVE-2025-47331 [MEDIUM] CWE-126 CVE-2025-47331: Information disclosure while processing a firmware event.
Information disclosure while processing a firmware event.
nvd
CVE-2024-38426P4MEDIUMCVSS 5.3v315 5G IoT Modemv9205 LTE Modem+162 more2025-03-03
CVE-2024-38426 [MEDIUM] CWE-287 CVE-2024-38426: While processing the authentication message in UE, improper authentication may lead to information d
While processing the authentication message in UE, improper authentication may lead to information disclosure.
nvd
CVE-2022-33289P4MEDIUMCVSS 6.8v315 5G IoT Modemv9205 LTE Modem+222 more2023-04-13
CVE-2022-33289 [MEDIUM] CWE-129 CVE-2022-33289: Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is s
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
nvd
CVE-2023-33014P4MEDIUMCVSS 6.8vAR8035vFastConnect 6700+35 more2024-01-02
CVE-2023-33014 [MEDIUM] CWE-20 CVE-2023-33014: Information disclosure in Core services while processing a Diag command.
Information disclosure in Core services while processing a Diag command.
nvd
CVE-2025-47402P4MEDIUMCVSS 6.5vAR8035vCologne+92 more2026-02-02
CVE-2025-47402 [MEDIUM] CWE-126 CVE-2025-47402: Transient DOS when processing a received frame with an excessively large authentication information
Transient DOS when processing a received frame with an excessively large authentication information element.
nvd
CVE-2025-21464P4MEDIUMCVSS 6.5v315 5G IoT Modemv9205 LTE Modem+335 more2025-08-06
CVE-2025-21464 [MEDIUM] CWE-125 CVE-2025-21464: Information disclosure while reading data from an image using specified offset and size parameters.
Information disclosure while reading data from an image using specified offset and size parameters.
nvd
CVE-2025-21465P4MEDIUMCVSS 6.5v315 5G IoT Modemv9205 LTE Modem+342 more2025-08-06
CVE-2025-21465 [MEDIUM] CWE-125 CVE-2025-21465: Information disclosure while processing the hash segment in an MBN file.
Information disclosure while processing the hash segment in an MBN file.
nvd