Total
7449 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-21466 | 1 Qualcomm | 81 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 78 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing a private escape command in an event trigger. | ||||
| CVE-2023-33029 | 1 Qualcomm | 264 Apq8009, Apq8009 Firmware, Ar8035 and 261 more | 2025-08-11 | 8.4 High |
| Memory corruption in DSP Service during a remote call from HLOS to DSP. | ||||
| CVE-2023-43546 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | 8.4 High |
| Memory corruption while invoking HGSL IOCTL context create. | ||||
| CVE-2024-38402 | 1 Qualcomm | 362 Ar8035, Ar8035 Firmware, Csra6620 and 359 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing IOCTL call for getting group info. | ||||
| CVE-2024-21471 | 1 Qualcomm | 350 205 Mobile, 205 Mobile Firmware, 215 Mobile and 347 more | 2025-08-11 | 8.4 High |
| Memory corruption when IOMMU unmap of a GPU buffer fails in Linux. | ||||
| CVE-2024-43057 | 1 Qualcomm | 306 Ar8035, Ar8035 Firmware, C-v2x 9150 and 303 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing command in Glink linux. | ||||
| CVE-2023-43547 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csra6620 and 237 more | 2025-08-11 | 8.4 High |
| Memory corruption while invoking IOCTLs calls in Automotive Multimedia. | ||||
| CVE-2023-43552 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2025-08-11 | 9.8 Critical |
| Memory corruption while processing MBSSID beacon containing several subelement IE. | ||||
| CVE-2024-33060 | 1 Qualcomm | 540 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 537 more | 2025-08-11 | 8.4 High |
| Memory corruption when two threads try to map and unmap a single node simultaneously. | ||||
| CVE-2024-38411 | 1 Qualcomm | 36 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 33 more | 2025-08-11 | 6.6 Medium |
| Memory corruption while registering a buffer from user-space to kernel-space using IOCTL calls. | ||||
| CVE-2023-33120 | 1 Qualcomm | 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more | 2025-08-11 | 7.8 High |
| Memory corruption in Audio when memory map command is executed consecutively in ADSP. | ||||
| CVE-2023-33118 | 1 Qualcomm | 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. | ||||
| CVE-2023-33114 | 1 Qualcomm | 224 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 221 more | 2025-08-11 | 8.4 High |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. | ||||
| CVE-2024-21468 | 1 Qualcomm | 460 205 Mobile, 205 Mobile Firmware, 215 Mobile and 457 more | 2025-08-11 | 8.4 High |
| Memory corruption when there is failed unmap operation in GPU. | ||||
| CVE-2024-30361 | 3 Apple, Foxit, Microsoft | 4 Macos, Pdf Editor, Pdf Reader and 1 more | 2025-08-08 | N/A |
| Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of AcroForms. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22877. | ||||
| CVE-2024-30362 | 3 Apple, Foxit, Microsoft | 4 Macos, Pdf Editor, Pdf Reader and 1 more | 2025-08-08 | N/A |
| Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22798. | ||||
| CVE-2021-34975 | 2 Foxit, Microsoft | 4 Pdf Editor, Pdf Reader, Phantompdf and 1 more | 2025-08-08 | N/A |
| Foxit PDF Reader transitionToState Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementation of the transitionToState method. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-15218. | ||||
| CVE-2024-30365 | 3 Apple, Foxit, Microsoft | 4 Macos, Pdf Editor, Pdf Reader and 1 more | 2025-08-08 | N/A |
| Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of AcroForms. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22947. | ||||
| CVE-2024-30367 | 2 Foxit, Microsoft | 3 Pdf Editor, Pdf Reader, Windows | 2025-08-08 | N/A |
| Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of AcroForms. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23013. | ||||
| CVE-2024-30371 | 2 Foxit, Microsoft | 3 Pdf Editor, Pdf Reader, Windows | 2025-08-08 | N/A |
| Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of AcroForms. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23355. | ||||