Vulnerabilities > Qualcomm > Snapdragon X12 LTE Firmware

DATE CVE VULNERABILITY TITLE RISK
2025-03-03 CVE-2024-38426 Improper Authentication vulnerability in Qualcomm products
While processing the authentication message in UE, improper authentication may lead to information disclosure.
network
low complexity
qualcomm CWE-287
5.3
2025-03-03 CVE-2024-53014 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption may occur while validating ports and channels in Audio driver.
local
low complexity
qualcomm CWE-129
7.8
2025-03-03 CVE-2025-21424 Use After Free vulnerability in Qualcomm products
Memory corruption while calling the NPU driver APIs concurrently.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33051 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-38402 Use After Free vulnerability in Qualcomm products
Memory corruption while processing IOCTL call for getting group info.
local
low complexity
qualcomm CWE-416
7.8
2023-09-05 CVE-2023-28565 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-33019 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
network
low complexity
qualcomm
7.5
2023-09-05 CVE-2023-33020 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
network
low complexity
qualcomm
7.5