Qualcomm Sm8635
162 CVEs affecting Qualcomm Sm8635. Latest disclosed: 2026-06-01. Critical: 4, High: 126.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-27034 | Critical | 9.8 | 2025-09-24 | Memory corruption while selecting the PLMN from SOR failed list. |
CVE-2025-21483 | Critical | 9.8 | 2025-09-24 | Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs. |
CVE-2024-45569 | Critical | 9.8 | 2025-02-03 | Memory corruption while parsing the ML IE due to invalid frame content. |
CVE-2025-21450 | Critical | 9.1 | 2025-07-08 | Cryptographic issue occurs due to use of insecure connection method while downloading. |
CVE-2025-47392 | High | 8.8 | 2026-04-06 | Memory corruption when decoding corrupted satellite data files with invalid signature offsets. |
CVE-2025-21479 | High | 8.6 | 2025-06-03 | Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands. |
CVE-2025-21480 | High | 8.6 | 2025-06-03 | Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands. |
CVE-2025-47345 | High | 8.4 | 2026-01-07 | Cryptographic issue may occur while encrypting license data. |
CVE-2024-33056 | High | 8.4 | 2024-12-02 | Memory corruption when allocating and accessing an entry in an SMEM partition continuously. |
CVE-2024-33060 | High | 8.4 | 2024-09-02 | Memory corruption when two threads try to map and unmap a single node simultaneously. |
CVE-2024-33045 | High | 8.4 | 2024-09-02 | Memory corruption when BTFM client sends new messages over Slimbus to ADSP. |
CVE-2024-23365 | High | 8.4 | 2024-09-02 | Memory corruption while releasing shared resources in MinkSocket listener thread. |
CVE-2026-24088 | High | 8.2 | 2026-06-01 | Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader. |
CVE-2025-21488 | High | 8.2 | 2025-09-24 | Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set. |
CVE-2025-21487 | High | 8.2 | 2025-09-24 | Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length. |
CVE-2024-53026 | High | 8.2 | 2025-06-03 | Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call. |
CVE-2024-53021 | High | 8.2 | 2025-06-03 | Information disclosure may occur while processing goodbye RTCP packet from network. |
CVE-2024-53020 | High | 8.2 | 2025-06-03 | Information disclosure may occur while decoding the RTP packet with invalid header extension from network. |
CVE-2024-53019 | High | 8.2 | 2025-06-03 | Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources. |
CVE-2024-49839 | High | 8.2 | 2025-02-03 | Memory corruption during management frame processing due to mismatch in T2LM info element. |