Qualcomm CVEs & Vulnerabilities

64 CVEs affecting Qualcomm products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

wcd9385 61wcd9385 firmware 61wcd9380 firmware 61wcd9380 61fastconnect 7800 60fastconnect 6900 60fastconnect 7800 firmware 60fastconnect 6900 firmware 60
CVE-2026-25277HIGH

Memory corruption while using Strongbox due to buffer overflow.

2 Jun 2026
8.8
CVSS
CVE-2026-25276HIGH

Memory corruption while using Strongbox due to missing bounds check.

2 Jun 2026
8.8
CVSS
CVE-2026-25260HIGH

Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications.

2 Jun 2026
7.0
CVSS
CVE-2026-25259HIGH

Memory corruption while processing multiple IOCTL command for escape operations.

2 Jun 2026
7.8
CVSS
CVE-2026-25258HIGH

Memory corruption while processing IOCTL calls for escape operations.

2 Jun 2026
7.8
CVSS
CVE-2026-24092HIGH

Memory Corruption when processing fastboot commands to set display mode.

2 Jun 2026
7.2
CVSS
CVE-2026-24091HIGH

Memory corruption while processing fastboot commands with improperly formatted input.

2 Jun 2026
7.2
CVSS
CVE-2026-24090HIGH

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow.

2 Jun 2026
7.1
CVSS
CVE-2026-24089HIGH

Memory corruption while processing fastboot commands with invalid input.

2 Jun 2026
7.2
CVSS
CVE-2026-24088HIGH

Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader.

2 Jun 2026
8.2
CVSS
CVE-2026-24087HIGH

Memory corruption while processing fastboot OEM commands.

2 Jun 2026
7.2
CVSS
CVE-2026-24085HIGH

Memory Corruption when processing display command line information due to improper initialization of a variable.

2 Jun 2026
7.2
CVSS
CVE-2025-59614MEDIUM

Memory Corruption when sending random number generator command with insufficient output buffer size.

2 Jun 2026
6.7
CVSS
CVE-2025-59613MEDIUM

Memory Corruption when output buffer size is smaller than input buffer size during data copying operation.

2 Jun 2026
6.7
CVSS
CVE-2025-59612MEDIUM

Memory corruption in windows drivers while sending incorrect trusted application request

2 Jun 2026
6.7
CVSS
CVE-2025-59611MEDIUM

Memory corruption in diagnostic services due to absence of input validation

2 Jun 2026
6.7
CVSS
CVE-2025-59610MEDIUM

Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer.

2 Jun 2026
6.4
CVSS
CVE-2025-59609MEDIUM

Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length.

2 Jun 2026
5.5
CVSS
CVE-2025-59606HIGH

Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization.

2 Jun 2026
7.8
CVSS
CVE-2025-59605HIGH

Memory Corruption when processing device identifier strings that exceed the expected maximum length.

2 Jun 2026
7.8
CVSS
CVE-2025-59604HIGH

Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.

2 Jun 2026
7.8
CVSS
CVE-2025-59601MEDIUM

Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.

2 Jun 2026
6.5
CVSS
CVE-2026-25293CRITICAL

Buffer overflow due to incorrect authorization in PLC FW

4 May 2026
9.8
CVSS
CVE-2026-25266HIGH

Memory corruption while processing IOCTL command when device is in power-save state.

4 May 2026
7.8
CVSS
CVE-2026-24082HIGH

Memory Corruption when copying data from a freed source while executing performance counter deselect operation.

4 May 2026
7.8
CVSS
CVE-2025-47408HIGH

Memory corruption when another driver calls an IOCTL with invalid input/output buffer.

4 May 2026
7.8
CVSS
CVE-2025-47407HIGH

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level.

4 May 2026
7.0
CVSS
CVE-2025-47406MEDIUM

Information Disclosure while processing IOCTL handler callbacks without verifying buffer size.

4 May 2026
5.5
CVSS
CVE-2025-47405HIGH

Memory corruption when processing camera sensor input/output control codes with invalid output buffers.

4 May 2026
7.8
CVSS
CVE-2025-47404HIGH

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

4 May 2026
7.8
CVSS
CVE-2025-47403HIGH

Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.

4 May 2026
7.5
CVSS
CVE-2025-47401HIGH

Transient DOS when processing target power rate tables during channel configuration.

4 May 2026
7.5
CVSS
CVE-2026-21382HIGH

Memory Corruption when handling power management requests with improperly sized input/output buffers.

6 Apr 2026
7.8
CVSS
CVE-2026-21381HIGH

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.

6 Apr 2026
7.5
CVSS
CVE-2026-21380HIGH

Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.

6 Apr 2026
7.8
CVSS
CVE-2026-21378HIGH

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

6 Apr 2026
7.8
CVSS
CVE-2026-21376HIGH

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

6 Apr 2026
7.8
CVSS
CVE-2026-21375HIGH

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

6 Apr 2026
7.8
CVSS
CVE-2026-21374HIGH

Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.

6 Apr 2026
7.8
CVSS
CVE-2026-21373HIGH

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

6 Apr 2026
7.8
CVSS
CVE-2026-21372HIGH

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.

6 Apr 2026
7.8
CVSS
CVE-2026-21371HIGH

Memory Corruption when retrieving output buffer with insufficient size validation.

6 Apr 2026
7.8
CVSS
CVE-2026-21367HIGH

Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

6 Apr 2026
7.5
CVSS
CVE-2025-47400HIGH

Cryptographic issue while copying data to a destination buffer without validating its size.

6 Apr 2026
7.1
CVSS
CVE-2025-47392HIGH

Memory corruption when decoding corrupted satellite data files with invalid signature offsets.

6 Apr 2026
8.8
CVSS
CVE-2025-47391HIGH

Memory corruption while processing a frame request from user.

6 Apr 2026
7.8
CVSS
CVE-2025-47390HIGH

Memory corruption while preprocessing IOCTL request in JPEG driver.

6 Apr 2026
7.8
CVSS
CVE-2025-47389HIGH

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.

6 Apr 2026
7.8
CVSS
← PrevPage 1 / 2Next →