Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2015-9032 | In all Android releases from CAF using the Linux kernel, a DRM key was exposed to QTEE applications. | 3.3 | 0.43% | 2017-06-13 | 2026-06-16 |
| CVE-2015-9031 | In all Android releases from CAF using the Linux kernel, a TZ memory address is exposed to HLOS by HDCP. | 3.3 | 0.43% | 2017-06-13 | 2026-06-16 |
| CVE-2021-1896 | Weak configuration in WLAN could cause forwarding of unencrypted packets from one client to another in Snapdragon Compute, Snapdragon Connectivity | 4.3 | 0.17% | 2021-07-13 | 2026-06-16 |
| CVE-2017-15814 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in msm_flash_subdev_do_ioctl of drivers/media/platform/msm/camera_v2/sensor/flash/msm_flash.c, there is a possible out of bounds read if flash_data.cfg_type is CFG_FLASH_INIT due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. | 4.4 | 0.17% | 2018-03-16 | 2026-06-16 |
| CVE-2022-22079 | Denial of service while processing fastboot flash command on mmc due to buffer over read | 4.6 | 0.16% | 2023-01-09 | 2026-06-17 |
| CVE-2022-22078 | Denial of service in BOOT when partition size for a particular partition is requested due to integer overflow when blocks are calculated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 4.6 | 0.17% | 2022-10-19 | 2026-06-17 |
| CVE-2021-1928 | Buffer over read could occur due to incorrect check of buffer size while flashing emmc devices in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 4.6 | 0.14% | 2021-09-08 | 2026-06-16 |
| CVE-2021-1901 | Possible buffer over-read due to lack of length check while flashing meta images in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 4.6 | 0.14% | 2021-07-13 | 2026-06-16 |
| CVE-2021-1899 | Possible buffer over read due to lack of length check while flashing meta images in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 4.6 | 0.14% | 2021-07-13 | 2026-06-16 |
| CVE-2021-1898 | Possible buffer over-read due to incorrect overflow check when loading splash image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 4.6 | 0.14% | 2021-07-13 | 2026-06-16 |
| CVE-2021-1897 | Possible Buffer Over-read due to lack of validation of boundary checks when loading splash image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 4.6 | 0.14% | 2021-07-13 | 2026-06-16 |
| CVE-2018-11846 | The use of a non-time-constant memory comparison operation can lead to timing/side channel attacks in Snapdragon Mobile in version SD 210/SD 212/SD 205, SD 845, SD 850 | 4.7 | 0.17% | 2018-10-26 | 2026-06-16 |
| CVE-2017-9691 | There is a race condition in Android for MSM, Firefox OS for MSM, and QRD Android that allows to access to already free'd memory in the debug message output functionality contained within the mobicore driver. | 4.7 | 0.13% | 2018-03-30 | 2026-06-16 |
| CVE-2017-9682 | In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in two KGSL driver functions can lead to a Use After Free condition. | 4.7 | 0.28% | 2017-08-18 | 2026-06-16 |
| CVE-2017-9676 | In all Qualcomm products with Android releases from CAF using the Linux kernel, potential use after free scenarios and race conditions can occur when accessing global static variables without using a lock. | 4.7 | 0.27% | 2017-09-21 | 2026-06-16 |
| CVE-2017-8281 | In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while querying event status via DCI. | 4.7 | 0.36% | 2017-09-21 | 2026-06-16 |
| CVE-2017-18302 | In Snapdragon (Automobile ,Mobile) in version MSM8996AU, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, Snapdragon_High_Med_2016, a crafted HLOS client can modify the structure in memory passed to a QSEE application between the time of check and the time of use, resulting in arbitrary writes to TZ kernel memory regions. | 4.7 | 0.17% | 2018-09-20 | 2026-06-16 |
| CVE-2016-5858 | In an ioctl handler in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, if a user supplies a value too large, then an out-of-bounds read occurs. | 4.7 | 0.54% | 2017-08-16 | 2026-06-16 |
| CVE-2016-5855 | In a driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a user-supplied buffer is casted to a structure without checking if the source buffer is large enough. | 4.7 | 0.46% | 2017-08-16 | 2026-06-16 |
| CVE-2016-5854 | In a driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, kernel heap memory can be exposed to userspace. | 4.7 | 0.46% | 2017-08-16 | 2026-06-16 |