Qualcomm Qcm6490_firmware
586 CVEs affecting Qualcomm Qcm6490_firmware. Latest disclosed: 2026-06-01. Critical: 42, High: 478.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-27034 | Critical | 9.8 | 2025-09-24 | Memory corruption while selecting the PLMN from SOR failed list. |
CVE-2025-21483 | Critical | 9.8 | 2025-09-24 | Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs. |
CVE-2024-45569 | Critical | 9.8 | 2025-02-03 | Memory corruption while parsing the ML IE due to invalid frame content. |
CVE-2023-22388 | Critical | 9.8 | 2023-11-07 | Memory Corruption in Multi-mode Call Processor while processing bit mask API. |
CVE-2023-33028 | Critical | 9.8 | 2023-10-03 | Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. |
CVE-2023-24855 | Critical | 9.8 | 2023-10-03 | Memory corruption in Modem while processing security related configuration before AS Security Exchange. |
CVE-2022-40510 | Critical | 9.8 | 2023-08-08 | Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. |
CVE-2022-33256 | Critical | 9.8 | 2023-03-10 | Memory corruption due to improper validation of array index in Multi-mode call processor. |
CVE-2022-40514 | Critical | 9.8 | 2023-02-12 | Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
CVE-2022-22088 | Critical | 9.8 | 2023-01-09 | Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote |
CVE-2022-25748 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-35104 | Critical | 9.8 | 2022-06-14 | Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-35081 | Critical | 9.8 | 2022-06-14 | Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon… |
CVE-2021-30341 | Critical | 9.8 | 2022-06-14 | Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago… |
CVE-2021-30351 | Critical | 9.8 | 2022-01-03 | An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapdragon Auto, Snapdragon Comput… |
CVE-2021-1975 | Critical | 9.8 | 2021-11-12 | Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S… |
CVE-2021-1946 | Critical | 9.8 | 2021-09-09 | Null Pointer Dereference may occur due to improper validation while processing crafted SDP body in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2023-43556 | Critical | 9.3 | 2024-06-03 | Memory corruption in Hypervisor when platform information mentioned is not aligned. |
CVE-2023-28578 | Critical | 9.3 | 2024-03-04 | Memory corruption in Core Services while executing the command for removing a single event listener. |
CVE-2023-33072 | Critical | 9.3 | 2024-02-06 | Memory corruption in Core while processing control functions. |