This page lists publicly disclosed CVE vulnerabilities affecting qualcomm qca1990_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-43511 | Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | [email protected] | 7.5 | 0.33% | 2024-01-02 | 2026-06-17 |
| CVE-2023-28565 | Memory corruption in WLAN HAL while handling command streams through WMI interfaces. | [email protected] | 7.8 | 0.05% | 2023-09-05 | 2026-06-17 |
| CVE-2023-28560 | Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | [email protected] | 7.8 | 0.11% | 2023-09-05 | 2026-06-17 |
| CVE-2023-21628 | Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. | [email protected] | 8.4 | 0.05% | 2023-06-06 | 2026-06-17 |
| CVE-2022-40532 | Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. | [email protected] | 8.4 | 0.05% | 2023-04-13 | 2026-06-17 |
| CVE-2022-25655 | Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. | [email protected] | 8.4 | 0.05% | 2023-03-10 | 2026-06-17 |
| CVE-2022-40512 | Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. | [email protected] | 7.5 | 0.42% | 2023-02-11 | 2026-06-17 |
| CVE-2022-25719 | Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | [email protected] | 8.2 | 0.46% | 2022-10-19 | 2026-06-17 |
| CVE-2022-25718 | Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | [email protected] | 9.1 | 0.41% | 2022-10-19 | 2026-06-17 |
| CVE-2021-1924 | Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | [email protected] | 9.0 | 0.17% | 2021-11-12 | 2026-06-16 |
| CVE-2021-1959 | Possible memory corruption due to lack of bound check of input index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | [email protected] | 7.8 | 0.16% | 2021-10-20 | 2026-06-16 |
| CVE-2020-11303 | Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking | [email protected] | 8.6 | 0.66% | 2021-10-20 | 2026-06-16 |
| CVE-2021-30261 | Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | [email protected] | 8.4 | 0.16% | 2021-09-17 | 2026-06-16 |
| CVE-2021-30260 | Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking | [email protected] | 8.4 | 0.05% | 2021-09-17 | 2026-06-16 |
| CVE-2021-1909 | Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | [email protected] | 7.3 | 0.15% | 2021-09-09 | 2026-06-16 |
| CVE-2021-1920 | Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables | [email protected] | 9.8 | 0.77% | 2021-09-08 | 2026-06-16 |
| CVE-2021-1916 | Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables | [email protected] | 9.8 | 0.77% | 2021-09-08 | 2026-06-16 |
| CVE-2020-11292 | Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | [email protected] | 7.8 | 0.75% | 2021-06-09 | 2026-06-16 |
| CVE-2020-11235 | Buffer overflow might occur while parsing unified command due to lack of check of input data received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking | [email protected] | 7.8 | 0.17% | 2021-06-09 | 2026-06-16 |
| CVE-2020-11159 | Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking | [email protected] | 9.1 | 0.80% | 2021-06-09 | 2026-06-16 |