Skip to main content

Snapdragon 7 Gen 1 Mobile Platform Firmware

13 CVEs product

Monthly

CVE-2026-21385 HIGH POC KEV PATCH THREAT Act Now

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memory allocation, enabling local privilege escalation to kernel level. KEV-listed and patched, this vulnerability affects Qualcomm-based mobile devices and embedded systems, potentially impacting billions of Android devices globally.

Memory Corruption Wcn3990 Firmware Sa8155 Firmware Sw5100p Firmware Qcn9024 Firmware +222
NVD VulDB GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2025-47383 HIGH This Week

5G Fixed Wireless Access Platform Firmware versions up to - contains a vulnerability that allows attackers to cryptographic issue when a VoWiFi call is triggered from UE (CVSS 7.2).

Information Disclosure Snapdragon 820am Firmware Video Collaboration Vc3 Platform Firmware Sw5100p Firmware Sm6250 Firmware +190
NVD
CVSS 3.1
7.2
EPSS
0.0%
CVE-2025-47373 HIGH This Week

Memory Corruption when accessing buffers with invalid length during TA invocation. [CVSS 7.8 HIGH]

Memory Corruption Qcm4490 Firmware Wcn3910 Firmware Sm7675 Firmware Sm8475p Firmware +179
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47371 MEDIUM This Month

5G Fixed Wireless Access Platform Firmware versions up to - is affected by reachable assertion (CVSS 6.5).

Denial Of Service Wcn3950 Firmware Snapdragon 7c Gen 2 Compute Platform Firmware Wcd9340 Firmware Wsa8830 Firmware +117
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-47369 MEDIUM PATCH This Month

Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID. [CVSS 5.5 MEDIUM]

Information Disclosure Snapdragon 660 Mobile Platform Firmware Snapdragon Xr2 5g Platform Firmware Sa6145p Firmware Snapdragon X55 5g Modem Rf System Firmware +154
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2025-47348 HIGH This Week

Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]

Memory Corruption Qca6696 Firmware Qamsrv1m Firmware Qam8620p Firmware Qca6688aq Firmware +181
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47334 MEDIUM PATCH This Month

Memory corruption while processing shared command buffer packet between camera userspace and kernel. [CVSS 6.7 MEDIUM]

Linux Memory Corruption Sm8635p Firmware Wcn7881 Firmware Sm6650 Firmware +132
NVD
CVSS 3.1
6.7
EPSS
0.0%
CVE-2025-47333 MEDIUM PATCH This Month

Memory corruption while handling buffer mapping operations in the cryptographic driver. [CVSS 6.6 MEDIUM]

Memory Corruption Snapdragon 778g 5g Mobile Platform Firmware Sa6150p Firmware Qam8650p Firmware Qfw7114 Firmware +217
NVD
CVSS 3.1
6.6
EPSS
0.0%
CVE-2025-47332 MEDIUM PATCH This Month

Memory corruption while processing a config call from userspace. [CVSS 6.7 MEDIUM]

Memory Corruption Wsa8815 Firmware Sm8635p Firmware Sm7635p Firmware Sm7550p Firmware +66
NVD
CVSS 3.1
6.7
EPSS
0.0%
CVE-2025-47331 MEDIUM PATCH This Month

Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]

Information Disclosure Ipq9048 Firmware Wsa8840 Firmware Qcm8550 Firmware Qca9888 Firmware +278
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-47330 MEDIUM PATCH This Month

Transient DOS while parsing video packets received from the video firmware. [CVSS 5.5 MEDIUM]

Denial Of Service Fastconnect 6700 Firmware Qca6574a Firmware Qca9377 Firmware Snapdragon X72 5g Modem Rf System Firmware +202
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2024-38425 MEDIUM This Month

Information disclosure while sending implicit broadcast containing APP launch information. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Wsa8835 Firmware Wsa8830 Firmware Wcd9380 Firmware +19
NVD
CVSS 3.1
6.1
EPSS
0.1%
CVE-2024-33043 MEDIUM PATCH This Month

Transient DOS while handling PS event when Program Service name length offset value is set to 255. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Buffer Overflow Apq8017 Firmware Aqt1000 Firmware Fastconnect 6200 Firmware Fastconnect 6700 Firmware +193
NVD
CVSS 3.1
5.5
EPSS
0.1%
EPSS 0% CVSS 7.8
HIGH POC KEV PATCH THREAT Act Now

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memory allocation, enabling local privilege escalation to kernel level. KEV-listed and patched, this vulnerability affects Qualcomm-based mobile devices and embedded systems, potentially impacting billions of Android devices globally.

Memory Corruption Wcn3990 Firmware Sa8155 Firmware +224
NVD VulDB GitHub
EPSS 0% CVSS 7.2
HIGH This Week

5G Fixed Wireless Access Platform Firmware versions up to - contains a vulnerability that allows attackers to cryptographic issue when a VoWiFi call is triggered from UE (CVSS 7.2).

Information Disclosure Snapdragon 820am Firmware Video Collaboration Vc3 Platform Firmware +192
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Memory Corruption when accessing buffers with invalid length during TA invocation. [CVSS 7.8 HIGH]

Memory Corruption Qcm4490 Firmware Wcn3910 Firmware +181
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

5G Fixed Wireless Access Platform Firmware versions up to - is affected by reachable assertion (CVSS 6.5).

Denial Of Service Wcn3950 Firmware Snapdragon 7c Gen 2 Compute Platform Firmware +119
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID. [CVSS 5.5 MEDIUM]

Information Disclosure Snapdragon 660 Mobile Platform Firmware Snapdragon Xr2 5g Platform Firmware +156
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]

Memory Corruption Qca6696 Firmware Qamsrv1m Firmware +183
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Memory corruption while processing shared command buffer packet between camera userspace and kernel. [CVSS 6.7 MEDIUM]

Linux Memory Corruption Sm8635p Firmware +134
NVD
EPSS 0% CVSS 6.6
MEDIUM PATCH This Month

Memory corruption while handling buffer mapping operations in the cryptographic driver. [CVSS 6.6 MEDIUM]

Memory Corruption Snapdragon 778g 5g Mobile Platform Firmware Sa6150p Firmware +219
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Memory corruption while processing a config call from userspace. [CVSS 6.7 MEDIUM]

Memory Corruption Wsa8815 Firmware Sm8635p Firmware +68
NVD
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]

Information Disclosure Ipq9048 Firmware Wsa8840 Firmware +280
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Transient DOS while parsing video packets received from the video firmware. [CVSS 5.5 MEDIUM]

Denial Of Service Fastconnect 6700 Firmware Qca6574a Firmware +204
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Information disclosure while sending implicit broadcast containing APP launch information. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Wsa8835 Firmware +21
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Transient DOS while handling PS event when Program Service name length offset value is set to 255. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Buffer Overflow Apq8017 Firmware Aqt1000 Firmware +195
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy