COOEY // HUBcompliance · community · intelligence

FAIL › dossier

Qualcomm vendor

12
failure events
0
zero-days
2
RCEs
12
on KEV
0
critical
65
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 12 events

DateEventSevFlagsShameSummary
2025-06-03 CVE-2025-21479 high ⚡RCE ⌖KEV 65 Multiple Qualcomm chipsets contain an incorrect authorization vulnerability. This vulnerability allows for memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
2025-06-03 CVE-2025-21480 high ⚡RCE ⌖KEV 65 Multiple Qualcomm chipsets contain an incorrect authorization vulnerability. This vulnerability allows for memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
2026-03-03 CVE-2026-21385 high ⌖KEV 50 Multiple Qualcomm chipsets contain a memory corruption vulnerability while using alignments for memory allocation.
2025-06-03 CVE-2025-27038 high ⌖KEV 50 Multiple Qualcomm chipsets contain a use-after-free vulnerability. This vulnerability allows for memory corruption while rendering graphics using Adreno GPU drivers in Chrome.
2024-10-08 CVE-2024-43047 high ⌖KEV 50 Multiple Qualcomm chipsets contain a use-after-free vulnerability due to memory corruption in DSP Services while maintaining memory maps of HLOS memory.
2023-12-05 CVE-2023-33107 high ⌖KEV 50 Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
2023-12-05 CVE-2023-33063 high ⌖KEV 50 Multiple Qualcomm chipsets contain a use-after-free vulnerability due to memory corruption in DSP Services during a remote call from HLOS to DSP.
2023-12-05 CVE-2023-33106 high ⌖KEV 50 Multiple Qualcomm chipsets contain a use of out-of-range pointer offset vulnerability due to memory corruption in Graphics while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
2023-12-05 CVE-2022-22071 high ⌖KEV 50 Multiple Qualcomm chipsets contain a use-after-free vulnerability when process shell memory is freed using IOCTL munmap call and process initialization is in progress.
2021-12-01 CVE-2020-11261 high ⌖KEV 50 Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
2021-11-03 CVE-2021-1906 high ⌖KEV 50 Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling of address deregistration on failure can lead to new GPU address allocation failure.
2021-11-03 CVE-2021-1905 high ⌖KEV 50 Multiple Qualcomm Chipsets contain a use after free vulnerability due to improper handling of memory mapping of multiple processes simultaneously.