qualcomm

sdx71m_firmware

18 known vulnerabilities · sorted by CVSS score

CVE-2025-27034

CRITICAL9.8

Memory corruption while selecting the PLMN from SOR failed list.

qualcomm / fastconnect_6900_firmware+112

Network

Published Sep 24, 2025

CVE-2023-28578

CRITICAL9.3

Memory corruption in Core Services while executing the command for removing a single event listener.

qualcomm / 315_5g_iot_modem_firmware+339

Local

Published Mar 4, 2024

CVE-2024-33056

HIGH8.4

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

qualcomm / 315_5g_iot_modem_firmware+329

Local

Published Dec 2, 2024

CVE-2024-23359

HIGH8.2

Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.

qualcomm / qcn9024_firmware+160

Network

Published Sep 2, 2024

CVE-2024-21465

HIGH7.8

Memory corruption while processing key blob passed by the user.

qualcomm / 9205_lte_modem_firmware+258

Local

Published Jul 1, 2024

CVE-2025-47323

HIGH7.8

Memory corruption while routing GPR packets between user and root when handling large data packet.

qualcomm / fastconnect_6900_firmware+177

Local

Published Dec 18, 2025

CVE-2024-45549

HIGH7.7

Information disclosure while creating MQ channels.

qualcomm / sm8550p_firmware+159

Local

Published Apr 7, 2025

CVE-2024-23385

HIGH7.5

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

qualcomm / wsa8845h_firmware+93

Network

Published Nov 4, 2024

CVE-2024-23353

HIGH7.5

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

qualcomm / wsa8845h_firmware+248

Network

Published Aug 5, 2024

CVE-2024-23352

HIGH7.5

Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.

qualcomm / snapdragon_855\+\/860_mobile_platform_\(sm8150-ac\)_firmware+104

Network

Published Aug 5, 2024

CVE-2025-47383

HIGH7.2

Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.

qualcomm / 5g_fixed_wireless_access_platform_firmware+205

Network

Published Mar 2, 2026

CVE-2024-23362

HIGH7.1

Cryptographic issue while parsing RSA keys in COBR format.

qualcomm / 9205_lte_modem_firmware+231

Local

Published Sep 2, 2024

CVE-2025-21482

HIGH7.1

Cryptographic issue while performing RSA PKCS padding decoding.

qualcomm / 315_5g_iot_modem_firmware+287

Local

Published Sep 24, 2025

CVE-2025-21464

MEDIUM6.5

Information disclosure while reading data from an image using specified offset and size parameters.

qualcomm / qcm4490_firmware+341

Local

Published Aug 6, 2025

CVE-2025-47371

MEDIUM6.5

Transient DOS when an LTE RLC packet with invalid TB is received by UE.

qualcomm / 5g_fixed_wireless_access_platform_firmware+124

Adjacent

Published Mar 2, 2026

CVE-2025-21465

MEDIUM6.5

Information disclosure while processing the hash segment in an MBN file.

qualcomm / 315_5g_iot_modem_firmware+348

Local

Published Aug 6, 2025

CVE-2024-43046

MEDIUM5.5

There may be information disclosure during memory re-allocation in TZ Secure OS.

qualcomm / csr8811_firmware+309

Local

Published Apr 7, 2025

CVE-2024-38426

MEDIUM5.4

While processing the authentication message in UE, improper authentication may lead to information disclosure.

qualcomm / 315_5g_iot_firmware+163

Adjacent

Published Mar 3, 2025