CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2025-21449 – Buffer Over-read in WLAN Embedded SW
https://notcve.org/view.php?id=CVE-2025-21449
08 Jul 2025 — Transient DOS may occur while processing malformed length field in SSID IEs. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-21446 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2025-21446
08 Jul 2025 — Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.2EPSS: 0%CPEs: 30EXPL: 0CVE-2025-21433 – NULL Pointer Dereference in SPS-HLOS
https://notcve.org/view.php?id=CVE-2025-21433
08 Jul 2025 — Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2025-21432 – Double Free in SPS-HLOS
https://notcve.org/view.php?id=CVE-2025-21432
08 Jul 2025 — Memory corruption while retrieving the CBOR data from TA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-415: Double Free •
CVSS: 8.5EPSS: 0%CPEs: 29EXPL: 0CVE-2025-21427 – Buffer Over-read in Data HLOS - LNX
https://notcve.org/view.php?id=CVE-2025-21427
08 Jul 2025 — Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.1EPSS: 0%CPEs: 14EXPL: 0CVE-2025-21422 – Cryptographic Issues in Automotive
https://notcve.org/view.php?id=CVE-2025-21422
08 Jul 2025 — Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-310: Cryptographic Issues •
CVSS: 5.3EPSS: 0%CPEs: 11EXPL: 0CVE-2024-53009 – Improper Validation of Array Index in Automotive Autonomy
https://notcve.org/view.php?id=CVE-2024-53009
08 Jul 2025 — Memory corruption while operating the mailbox in Automotive. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.6EPSS: 1%CPEs: 1EXPL: 0CVE-2025-27038 – Qualcomm Multiple Chipsets Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2025-27038
03 Jun 2025 — Memory corruption while rendering graphics using Adreno GPU drivers in Chrome. Multiple Qualcomm chipsets contain a use-after-free vulnerability. This vulnerability allows for memory corruption while rendering graphics using Adreno GPU drivers in Chrome. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-21463 – Buffer Over-read in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2025-21463
03 Jun 2025 — Transient DOS while processing the EHT operation IE in the received beacon frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 8.5EPSS: 0%CPEs: 35EXPL: 0CVE-2024-53026 – Buffer Over-read in Data Network Stack & Connectivity
https://notcve.org/view.php?id=CVE-2024-53026
03 Jun 2025 — Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html • CWE-126: Buffer Over-read •