VYPR

Vendor CVEs

Qualcomm

All CVEs

2,042 total · sorted by risk
  • CVE-2016-6755HigJan 12, 2017
    risk 0.46cvss 7.0epss 0.01

    An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android.…

  • CVE-2016-2443HigMay 9, 2016
    risk 0.46cvss 7.0epss 0.00

    The Qualcomm MDP driver in Android before 2016-05-01 on Nexus 5 and Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 26404525.

  • CVE-2016-2442HigMay 9, 2016
    risk 0.46cvss 7.0epss 0.00

    The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26494907.

  • CVE-2016-2441HigMay 9, 2016
    risk 0.46cvss 7.0epss 0.00

    The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26354602.

  • CVE-2016-2059HigMay 5, 2016
    risk 0.46cvss 7.0epss 0.00

    The msm_ipc_router_bind_control_port function in net/ipc_router/ipc_router_core.c in the IPC router kernel module for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify that a port is a…

  • CVE-2026-46271HigJun 3, 2026
    risk 0.44cvss 7.8epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: do WoW offloads only on primary link In case of multi-link connection, WCN7850 firmware crashes due to WoW offloads enabled on both primary and secondary links. Change to do it only on primary…

  • CVE-2025-59614MedJun 1, 2026
    risk 0.44cvss 6.7epss 0.00

    Memory Corruption when sending random number generator command with insufficient output buffer size.

  • CVE-2025-59613MedJun 1, 2026
    risk 0.44cvss 6.7epss 0.00

    Memory Corruption when output buffer size is smaller than input buffer size during data copying operation.

  • CVE-2025-59612MedJun 1, 2026
    risk 0.44cvss 6.7epss 0.00

    Memory corruption in windows drivers while sending incorrect trusted application request

  • CVE-2025-59611MedJun 1, 2026
    risk 0.44cvss 6.7epss 0.00

    Memory corruption in diagnostic services due to absence of input validation

  • CVE-2016-10443MedApr 18, 2018
    risk 0.44cvss 6.8epss 0.01

    In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD…

  • CVE-2025-59610MedJun 1, 2026
    risk 0.42cvss 6.4epss 0.00

    Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer.

  • CVE-2025-59601MedJun 1, 2026
    risk 0.42cvss 6.5epss 0.00

    Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.

  • CVE-2025-47404MedMay 4, 2026
    risk 0.42cvss 6.5epss 0.00

    Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

  • CVE-2025-47403MedMay 4, 2026
    risk 0.42cvss 6.5epss 0.00

    Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.

  • CVE-2025-47401MedMay 4, 2026
    risk 0.42cvss 6.5epss 0.00

    Transient DOS when processing target power rate tables during channel configuration.

  • CVE-2025-47374MedApr 6, 2026
    risk 0.42cvss 6.5epss 0.00

    Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling.

  • CVE-2018-5871MedSep 20, 2018
    risk 0.42cvss 6.5epss 0.00

    In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630,…

  • CVE-2018-5894MedJul 6, 2018
    risk 0.42cvss 6.5epss 0.01

    Improper Validation of Array Index in Multimedia While parsing an mp4 file in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, an out-of-bounds access can occur.

  • CVE-2017-9681MedMar 30, 2018
    risk 0.42cvss 6.5epss 0.00

    In Android before 2017-08-05 on Qualcomm MSM, Firefox OS for MSM, QRD Android, and all Android releases from CAF using the Linux kernel, if kernel memory address is passed from userspace through iris_vidioc_s_ext_ctrls ioctl, it will print kernel address data. A user could set…

  • CVE-2025-47406MedMay 4, 2026
    risk 0.40cvss 6.1epss 0.00

    Information Disclosure while processing IOCTL handler callbacks without verifying buffer size.

  • CVE-2000-1198MedAug 31, 2001
    risk 0.39cvss 5.5epss 0.00

    qpopper POP server creates lock files with predictable names, which allows local users to cause a denial of service for other users (lack of mail access) by creating lock files for other mail boxes.

  • CVE-2018-5826MedApr 3, 2018
    risk 0.38cvss 5.9epss 0.00

    In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, due to a race condition, a Use After Free condition can occur in the WLAN driver.

  • CVE-2025-59609MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length.

  • CVE-2026-25266MedMay 4, 2026
    risk 0.36cvss 5.5epss 0.00

    Memory corruption while processing IOCTL command when device is in power-save state.

  • CVE-2017-18301MedSep 20, 2018
    risk 0.36cvss 5.5epss 0.00

    In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDM630, SDM636, SDM660, SDX20,…

  • CVE-2018-5864MedJul 6, 2018
    risk 0.36cvss 5.5epss 0.00

    While processing a WMI_APFIND event in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a buffer over-read and information leak can potentially occur.

  • CVE-2018-5895MedJul 6, 2018
    risk 0.36cvss 5.5epss 0.00

    Buffer over-read may happen in wma_process_utf_event() due to improper buffer length validation before writing into param_buf->num_wow_packet_buffer in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level…

  • CVE-2018-5836MedJul 6, 2018
    risk 0.36cvss 5.5epss 0.00

    In wma_nan_rsp_event_handler() in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, the data_len value is received from firmware and not properly validated which could potentially lead to…

  • CVE-2017-15824MedJul 6, 2018
    risk 0.36cvss 5.5epss 0.00

    In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, the function UpdateDeviceStatus() writes a local stack buffer without initialization to flash memory using WriteToPartition() which may…

  • CVE-2016-10420MedApr 18, 2018
    risk 0.36cvss 5.5epss 0.01

    In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810,…

  • CVE-2015-9218MedApr 18, 2018
    risk 0.36cvss 5.5epss 0.00

    In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 835, SD 845, SDM630,…

  • CVE-2016-10234MedApr 4, 2018
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the Qualcomm IPA driver. Product: Android. Versions: Android kernel. Android ID: A-34390017. References: QC-CR#1069060.

  • CVE-2017-9693MedMar 30, 2018
    risk 0.36cvss 5.5epss 0.00

    The length of attribute value for STA_EXT_CAPABILITY in __wlan_hdd_change_station in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-06 being less than the actual lenth of StaParams.extn_capability results in a read for extra bytes when a memcpy is done from…

  • CVE-2017-11040MedSep 21, 2017
    risk 0.36cvss 5.5epss 0.00

    In all Qualcomm products with Android releases from CAF using the Linux kernel, when reading from sysfs nodes, one can read more information than it is allowed to.

  • CVE-2017-11002MedSep 21, 2017
    risk 0.36cvss 5.5epss 0.00

    In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing a vendor sub-command, a buffer over-read can occur.

  • CVE-2017-11001MedSep 21, 2017
    risk 0.36cvss 5.5epss 0.00

    In all Qualcomm products with Android releases from CAF using the Linux kernel, the length of the MAC address is not checked which may cause out of bounds read.

  • CVE-2017-10996MedSep 21, 2017
    risk 0.36cvss 5.5epss 0.00

    In all Qualcomm products with Android releases from CAF using the Linux kernel, out of bounds access is possible in c_show(), due to compat_hwcap_str[] not being NULL-terminated. This error is not fatal, however the device might crash/reboot with memory violation/out of bounds…

  • CVE-2017-0626MedMay 12, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the Qualcomm crypto engine driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user…

  • CVE-2017-0624MedMay 12, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission.…

  • CVE-2016-10292MedMay 12, 2017
    risk 0.36cvss 5.5epss 0.01

    A denial of service vulnerability in the Qualcomm Wi-Fi driver could enable a proximate attacker to cause a denial of service in the Wi-Fi subsystem. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: Kernel-3.10,…

  • CVE-2016-5349MedApr 6, 2017
    risk 0.36cvss 5.5epss 0.01

    The high level operating systems (HLOS) was not providing sufficient memory address information to ensure that secure applications inside Qualcomm Secure Execution Environment (QSEE) only write to legitimate memory ranges related to the QSEE secure application's HLOS client.…

  • CVE-2016-8483MedMar 8, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the Qualcomm power driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission.…

  • CVE-2017-0401MedJan 12, 2017
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used…

  • CVE-2017-0399MedJan 12, 2017
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used…

  • CVE-2016-8463MedJan 12, 2017
    risk 0.36cvss 5.5epss 0.01

    A denial of service vulnerability in the Qualcomm FUSE file system could enable a remote attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions:…

  • CVE-2016-6752MedNov 25, 2016
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue…

  • CVE-2016-6751MedNov 25, 2016
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue…

  • CVE-2016-6750MedNov 25, 2016
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue…

  • CVE-2016-6749MedNov 25, 2016
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue…

Page 15 of 41