Qualcomm Sm8635_firmware

162 CVEs affecting Qualcomm Sm8635_firmware. Latest disclosed: 2026-06-01. Critical: 4, High: 126.

Top CVEs affecting Qualcomm Sm8635_firmware
CVESeverityScorePublishedSummary
CVE-2025-27034Critical9.82025-09-24Memory corruption while selecting the PLMN from SOR failed list.
CVE-2025-21483Critical9.82025-09-24Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
CVE-2024-45569Critical9.82025-02-03Memory corruption while parsing the ML IE due to invalid frame content.
CVE-2025-21450Critical9.12025-07-08Cryptographic issue occurs due to use of insecure connection method while downloading.
CVE-2025-47392High8.82026-04-06Memory corruption when decoding corrupted satellite data files with invalid signature offsets.
CVE-2025-21479High8.62025-06-03Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
CVE-2025-21480High8.62025-06-03Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
CVE-2025-47345High8.42026-01-07Cryptographic issue may occur while encrypting license data.
CVE-2024-33056High8.42024-12-02Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
CVE-2024-33060High8.42024-09-02Memory corruption when two threads try to map and unmap a single node simultaneously.
CVE-2024-33045High8.42024-09-02Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2024-23365High8.42024-09-02Memory corruption while releasing shared resources in MinkSocket listener thread.
CVE-2026-24088High8.22026-06-01Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader.
CVE-2025-21488High8.22025-09-24Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
CVE-2025-21487High8.22025-09-24Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
CVE-2024-53026High8.22025-06-03Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
CVE-2024-53021High8.22025-06-03Information disclosure may occur while processing goodbye RTCP packet from network.
CVE-2024-53020High8.22025-06-03Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
CVE-2024-53019High8.22025-06-03Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.
CVE-2024-49839High8.22025-02-03Memory corruption during management frame processing due to mismatch in T2LM info element.