cbcvebase.

Qualcomm Inc Snapdragon vulnerabilities

940 known vulnerabilities affecting qualcomm_inc/snapdragon.

Total CVEs
940
CISA KEV
8
actively exploited
Public exploits
2
Exploited in wild
8
Severity breakdown
CRITICAL52HIGH738MEDIUM150

Vulnerabilities

Page 44 of 47
CVE-2023-33078P4MEDIUMCVSS 5.5vFastConnect 6700vFastConnect 6900+11 more2024-03-04
CVE-2023-33078 [MEDIUM] CWE-126 CVE-2023-33078: Information Disclosure while processing IOCTL request in FastRPC. Information Disclosure while processing IOCTL request in FastRPC.
nvd
CVE-2024-38417P4MEDIUMCVSS 5.5vAR8035vC-V2X 9150+54 more2025-02-03
CVE-2024-38417 [MEDIUM] CWE-126 CVE-2024-38417: Information disclosure while processing IO control commands. Information disclosure while processing IO control commands.
nvd
CVE-2023-21667P4MEDIUMCVSS 6.5vQCA6390vQCA6391+41 more2023-09-05
CVE-2023-21667 [MEDIUM] CWE-126 CVE-2023-21667: Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard. Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
nvd
CVE-2025-47371P4MEDIUMCVSS 6.5v5G Fixed Wireless Access PlatformvAR8035+123 more2026-03-02
CVE-2025-47371 [MEDIUM] CWE-617 CVE-2025-47371: Transient DOS when an LTE RLC packet with invalid TB is received by UE. Transient DOS when an LTE RLC packet with invalid TB is received by UE.
nvd
CVE-2024-43056P4MEDIUMCVSS 6.5vAQT1000vAR8035+190 more2025-03-03
CVE-2024-43056 [MEDIUM] CWE-126 CVE-2024-43056: Transient DOS during hypervisor virtual I/O operation in a virtual machine. Transient DOS during hypervisor virtual I/O operation in a virtual machine.
nvd
CVE-2018-11922P4MEDIUMCVSS 5.5vMDM9206vMDM9607+16 more2024-11-26
CVE-2018-11922 [MEDIUM] CWE-16 CVE-2018-11922: Wrong configuration in Touch Pal application can collect user behavior data without awareness by the Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.
nvd
CVE-2023-28563P4MEDIUMCVSS 5.5vAQT1000vAR8031+231 more2023-11-07
CVE-2023-28563 [MEDIUM] CWE-126 CVE-2023-28563: Information disclosure in IOE Firmware while handling WMI command. Information disclosure in IOE Firmware while handling WMI command.
nvd
CVE-2023-28571P4MEDIUMCVSS 5.5vAPQ8064AUvCSRB31024+81 more2023-10-03
CVE-2023-28571 [MEDIUM] CWE-126 CVE-2023-28571: Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming sc Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
nvd
CVE-2024-33061P4MEDIUMCVSS 5.5vQCS8550vSW5100+7 more2025-01-06
CVE-2024-33061 [MEDIUM] CWE-126 CVE-2024-33061: Information disclosure while processing IOCTL call made for releasing a trusted VM process release o Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.
nvd
CVE-2024-38414P4MEDIUMCVSS 5.5vFastConnect 6900vFastConnect 7800+27 more2025-02-03
CVE-2024-38414 [MEDIUM] CWE-126 CVE-2024-38414: Information disclosure while processing information on firmware image during core initialization. Information disclosure while processing information on firmware image during core initialization.
nvd
CVE-2024-43046P4MEDIUMCVSS 5.5v315 5G IoT Modemv9205 LTE Modem+303 more2025-04-07
CVE-2024-43046 [MEDIUM] CWE-200 CVE-2024-43046: There may be information disclosure during memory re-allocation in TZ Secure OS. There may be information disclosure during memory re-allocation in TZ Secure OS.
nvd
CVE-2025-27072P4MEDIUMCVSS 5.5vQAM8255PvQAM8295P+34 more2025-08-06
CVE-2025-27072 [MEDIUM] CWE-120 CVE-2025-27072: Information disclosure while processing a packet at EAVB BE side with invalid header length. Information disclosure while processing a packet at EAVB BE side with invalid header length.
nvd
CVE-2025-47406P4MEDIUMCVSS 5.5vColognevFastConnect 6700+29 more2026-05-04
CVE-2025-47406 [MEDIUM] CWE-126 CVE-2025-47406: Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. Information Disclosure while processing IOCTL handler callbacks without verifying buffer size.
nvd
CVE-2024-23350P4MEDIUMCVSS 6.5vAR8035vFastConnect 6900+23 more2024-08-05
CVE-2024-23350 [MEDIUM] CWE-617 CVE-2024-23350: Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR co Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.
nvd
CVE-2023-28569P4MEDIUMCVSS 5.5vAQT1000vAR9380+209 more2023-11-07
CVE-2023-28569 [MEDIUM] CWE-126 CVE-2023-28569: Information disclosure in WLAN HAL while handling command through WMI interfaces. Information disclosure in WLAN HAL while handling command through WMI interfaces.
nvd
CVE-2023-28566P4MEDIUMCVSS 5.5vAQT1000vCSRB31024+126 more2023-11-07
CVE-2023-28566 [MEDIUM] CWE-126 CVE-2023-28566: Information disclosure in WLAN HAL while handling the WMI state info command. Information disclosure in WLAN HAL while handling the WMI state info command.
nvd
CVE-2023-28554P4MEDIUMCVSS 5.5vAQT1000vAR9380+146 more2023-11-07
CVE-2023-28554 [MEDIUM] CWE-126 CVE-2023-28554: Information Disclosure in Qualcomm IPC while reading values from shared memory in VM. Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
nvd
CVE-2022-33273P4MEDIUMCVSS 5.5vAQT1000vAR8035+98 more2023-05-02
CVE-2022-33273 [MEDIUM] CWE-126 CVE-2022-33273: Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report ge Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.
nvd
CVE-2022-22075P4MEDIUMCVSS 5.5vAPQ8009vAPQ8009W+181 more2023-03-10
CVE-2022-22075 [MEDIUM] CWE-200 CVE-2022-22075: Information Disclosure in Graphics during GPU context switch. Information Disclosure in Graphics during GPU context switch.
nvd
CVE-2022-33221P4MEDIUMCVSS 5.5vSD 8 Gen1 5GvSSG2115P+12 more2023-02-12
CVE-2022-33221 [MEDIUM] CWE-126 CVE-2022-33221: Information disclosure in Trusted Execution Environment due to buffer over-read while processing met Information disclosure in Trusted Execution Environment due to buffer over-read while processing metadata verification requests.
nvd