Search Results (530 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-30039 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2025-08-27 5.5 Medium
Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2025-27029 1 Qualcomm 134 Fastconnect 7800, Fastconnect 7800 Firmware, Immersive Home 3210 Platform and 131 more 2025-08-20 7.5 High
Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.
CVE-2024-53019 1 Qualcomm 162 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 159 more 2025-08-20 8.2 High
Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.
CVE-2025-27065 1 Qualcomm 301 Ar8035, Ar8035 Firmware, Fastconnect 6800 and 298 more 2025-08-20 7.5 High
Transient DOS while processing a frame with malformed shared-key descriptor.
CVE-2024-45556 1 Qualcomm 121 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 118 more 2025-08-19 6.5 Medium
Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.
CVE-2025-21457 2 Google, Qualcomm 32 Android, Ar8035, Ar8035 Firmware and 29 more 2025-08-19 6.1 Medium
Information disclosure while opening a fastrpc session when domain is not sanitized.
CVE-2025-27068 1 Qualcomm 33 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6900 and 30 more 2025-08-18 7.8 High
Memory corruption while processing an IOCTL command with an arbitrary address.
CVE-2024-21459 1 Qualcomm 352 Ar8035, Ar8035 Firmware, Ar9380 and 349 more 2025-08-15 6.5 Medium
Information disclosure while handling beacon or probe response frame in STA.
CVE-2021-34584 2 Codesys, Wago 55 Codesys, 750-8202, 750-8202 Firmware and 52 more 2025-08-15 9.1 Critical
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.
CVE-2024-52877 1 Insyde 1 Insydeh2o 2025-08-15 7.5 High
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, callback function SmmCreateVariableLockList () calls CreateVariableLockListInSmm (). In CreateVariableLockListInSmm (), it uses StrSize () to get variable name size and it could lead to a buffer over-read.
CVE-2024-52878 1 Insyde 1 Insydeh2o 2025-08-15 7.5 High
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, VariableServicesSetVariable () can be called by gRT_>SetVariable () or the SmmSetSensitiveVariable () or SmmInternalSetVariable () from SMM. In VariableServicesSetVariable (), it uses StrSize () to get variable name size, uses StrLen () to get variable name length and uses StrCmp () to compare strings. These actions may cause a buffer over-read.
CVE-2024-52879 1 Insyde 1 Insydeh2o 2025-08-15 7.5 High
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, SmmUpdateVariablePropertySmi () is a SMM callback function and it uses StrCmp () to compare variable names. This action may cause a buffer over-read.
CVE-2023-33062 1 Qualcomm 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more 2025-08-11 7.5 High
Transient DOS in WLAN Firmware while parsing a BTM request.
CVE-2023-28569 1 Qualcomm 416 Aqt1000, Aqt1000 Firmware, Ar9380 and 413 more 2025-08-11 6.1 Medium
Information disclosure in WLAN HAL while handling command through WMI interfaces.
CVE-2024-33050 1 Qualcomm 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more 2025-08-11 7.5 High
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2024-33051 1 Qualcomm 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more 2025-08-11 7.5 High
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-33073 1 Qualcomm 320 Ar8035, Ar8035 Firmware, Csr8811 and 317 more 2025-08-11 8.2 High
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2023-43555 1 Qualcomm 238 215 Mobile, 215 Mobile Firmware, Aqt1000 and 235 more 2025-08-11 8.2 High
Information disclosure in Video while parsing mp2 clip with invalid section length.
CVE-2023-24848 1 Qualcomm 488 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 485 more 2025-08-11 8.2 High
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
CVE-2023-24849 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more 2025-08-11 8.2 High
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.