Qualcomm Qca6391
971 CVEs affecting Qualcomm Qca6391. Latest disclosed: 2026-06-01. Critical: 99, High: 681.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-27034 | Critical | 9.8 | 2025-09-24 | Memory corruption while selecting the PLMN from SOR failed list. |
CVE-2025-21483 | Critical | 9.8 | 2025-09-24 | Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs. |
CVE-2023-43552 | Critical | 9.8 | 2024-03-04 | Memory corruption while processing MBSSID beacon containing several subelement IE. |
CVE-2023-33083 | Critical | 9.8 | 2023-12-05 | Memory corruption in WLAN Host while processing RRM beacon on the AP. |
CVE-2023-33082 | Critical | 9.8 | 2023-12-05 | Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE. |
CVE-2023-33045 | Critical | 9.8 | 2023-11-07 | Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. |
CVE-2023-22388 | Critical | 9.8 | 2023-11-07 | Memory Corruption in Multi-mode Call Processor while processing bit mask API. |
CVE-2023-33028 | Critical | 9.8 | 2023-10-03 | Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. |
CVE-2023-24855 | Critical | 9.8 | 2023-10-03 | Memory corruption in Modem while processing security related configuration before AS Security Exchange. |
CVE-2023-28581 | Critical | 9.8 | 2023-09-05 | Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE. |
CVE-2023-28562 | Critical | 9.8 | 2023-09-05 | Memory corruption while handling payloads from remote ESL. |
CVE-2022-40510 | Critical | 9.8 | 2023-08-08 | Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. |
CVE-2022-33256 | Critical | 9.8 | 2023-03-10 | Memory corruption due to improper validation of array index in Multi-mode call processor. |
CVE-2022-40514 | Critical | 9.8 | 2023-02-12 | Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
CVE-2022-33279 | Critical | 9.8 | 2023-02-12 | Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. |
CVE-2022-22088 | Critical | 9.8 | 2023-01-09 | Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote |
CVE-2022-25748 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2022-25720 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C… |
CVE-2022-22096 | Critical | 9.8 | 2022-09-02 | Memory corruption in Bluetooth HOST due to stack-based buffer overflow when when extracting data using command length parameter in Snapdragon Connectivity, Sna… |
CVE-2021-35104 | Critical | 9.8 | 2022-06-14 | Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |