qcn6100_firmware

Published Oct 19, 2022

Page 1 of 4

CVE-2022-40514

qualcomm / aqt1000_firmware+228

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.

Published Feb 12, 2023

CVE-2024-21473

qualcomm / ar8035_firmware+126

Memory corruption while redirecting log file to any file location with any file name.

Published Apr 1, 2024

CVE-2023-33028

qualcomm / ar8035_firmware+175

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

Published Oct 3, 2023

CVE-2022-33279

qualcomm / ar9380_firmware+73

Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length.

qualcomm / 315_5g_iot_modem_firmware+339

Published Feb 12, 2023

CVE-2023-28578

CRITICAL9.3

Memory corruption in Core Services while executing the command for removing a single event listener.

qualcomm / csr8811_firmware+59

Published Mar 4, 2024

CVE-2022-25652

CRITICAL9.0

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking

qualcomm / apq8064au_firmware+94

Published Sep 16, 2022

CVE-2025-27074

HIGH8.8

Memory corruption while processing a GP command response.

qualcomm / immersive_home_214_platform_firmware+24

Published Nov 4, 2025

CVE-2025-27060

HIGH8.8

Memory corruption while performing SCM call with malformed inputs.

qualcomm / immersive_home_214_platform_firmware+24

Published Oct 9, 2025

CVE-2025-27059

HIGH8.8

Memory corruption while performing SCM call.

Published Oct 9, 2025

CVE-2022-33277

qualcomm / aqt1000_firmware+243

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

Published Feb 12, 2023

CVE-2022-33275

qualcomm / 315_5g_iot_modem_firmware+258

Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.

Published Sep 5, 2023

CVE-2023-33088

qualcomm / 315_5g_iot_modem_firmware+305

Memory corruption when processing cmd parameters while parsing vdev.

Published Dec 5, 2023

CVE-2022-40530

qualcomm / aqt1000_firmware+188

Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.

Published Mar 10, 2023

CVE-2022-33276

qualcomm / ar8035_firmware+133

Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.

Published Jan 9, 2023

CVE-2022-40532

qualcomm / 315_5g_iot_modem_firmware+352

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

Published Apr 13, 2023

CVE-2022-40531

qualcomm / apq8009_firmware+283

Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.

qualcomm / aqt1000_firmware+184

Published Mar 10, 2023

CVE-2021-35088

HIGH8.2

Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

qualcomm / aqt1000_firmware+176

Published Apr 1, 2022

CVE-2022-33284

HIGH8.2

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.

qualcomm / ar8035_firmware+133

Published Jan 9, 2023

CVE-2022-33283

HIGH8.2

Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.