Home › Vendors › Qualcomm › Fastconnect 6800 FirmwareQualcomm Fastconnect 6800 Firmware — known CVE vulnerabilities Every CVE whose affected-product data names Qualcomm Fastconnect 6800 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200) CVE-2025-21483 — CVSS 9.8 (critical) : Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.CVE-2023-22388 — CVSS 9.8 (critical) : Memory Corruption in Multi-mode Call Processor while processing bit mask API.CVE-2025-27034 — CVSS 9.8 (critical) : Memory corruption while selecting the PLMN from SOR failed list.CVE-2023-28581 — CVSS 9.8 (critical) : Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.CVE-2023-28562 — CVSS 9.8 (critical) : Memory corruption while handling payloads from remote ESL.CVE-2023-33072 — CVSS 9.3 (critical) : Memory corruption in Core while processing control functions.CVE-2023-28578 — CVSS 9.3 (critical) : Memory corruption in Core Services while executing the command for removing a single event listener.CVE-2023-33032 — CVSS 9.3 (critical) : Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.CVE-2023-43538 — CVSS 9.3 (critical) : Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.CVE-2023-33030 — CVSS 9.3 (critical) : Memory corruption in HLOS while running playready use-case.CVE-2023-43551 — CVSS 9.1 (critical) : Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send…CVE-2026-25276 — CVSS 8.8 (high) : Memory corruption while using Strongbox due to missing bounds check.CVE-2024-38420 — CVSS 8.8 (high) : Memory corruption while configuring a Hypervisor based input virtual device.CVE-2025-47392 — CVSS 8.8 (high) : Memory corruption when decoding corrupted satellite data files with invalid signature offsets.CVE-2026-25277 — CVSS 8.8 (high) : Memory corruption while using Strongbox due to buffer overflow.CVE-2023-21673 — CVSS 8.7 (high) : Improper Access to the VM resource manager can lead to Memory Corruption.CVE-2025-21479 — CVSS 8.6 (high) — actively exploited : Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.CVE-2025-21480 — CVSS 8.6 (high) — actively exploited : Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.CVE-2024-21470 — CVSS 8.4 (high) : Memory corruption while allocating memory for graphics.CVE-2023-28547 — CVSS 8.4 (high) : Memory corruption in SPS Application while requesting for public key in sorter TA.CVE-2023-33114 — CVSS 8.4 (high) : Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.CVE-2023-33119 — CVSS 8.4 (high) : Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.CVE-2024-21468 — CVSS 8.4 (high) : Memory corruption when there is failed unmap operation in GPU.CVE-2023-24852 — CVSS 8.4 (high) : Memory Corruption in Core due to secure memory access by user while loading modem image.CVE-2023-43541 — CVSS 8.4 (high) : Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render.CVE-2023-33033 — CVSS 8.4 (high) : Memory corruption in Audio during playback with speaker protection.CVE-2024-33065 — CVSS 8.4 (high) : Memory corruption while taking snapshot when an offset variable is set by camera driver.CVE-2024-33060 — CVSS 8.4 (high) : Memory corruption when two threads try to map and unmap a single node simultaneously.CVE-2024-33056 — CVSS 8.4 (high) : Memory corruption when allocating and accessing an entry in an SMEM partition continuously.CVE-2023-22667 — CVSS 8.4 (high) : Memory Corruption in Audio while allocating the ion buffer during the music playback.CVE-2024-33044 — CVSS 8.4 (high) : Memory corruption while Configuring the SMR/S2CR register in Bypass mode.CVE-2023-33066 — CVSS 8.4 (high) : Memory corruption in Audio while processing RT proxy port register driver.CVE-2024-33035 — CVSS 8.4 (high) : Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.CVE-2023-33088 — CVSS 8.4 (high) : Memory corruption when processing cmd parameters while parsing vdev.CVE-2024-33023 — CVSS 8.4 (high) : Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.CVE-2023-33092 — CVSS 8.4 (high) : Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.CVE-2023-33094 — CVSS 8.4 (high) : Memory corruption while running VK synchronization with KASAN enabled.CVE-2024-23373 — CVSS 8.4 (high) : Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.CVE-2024-21481 — CVSS 8.4 (high) : Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.CVE-2024-21471 — CVSS 8.4 (high) : Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.CVE-2023-33106 — CVSS 8.4 (high) — actively exploited : Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.CVE-2023-33107 — CVSS 8.4 (high) — actively exploited : Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.CVE-2023-24853 — CVSS 8.4 (high) : Memory Corruption in HLOS while registering for key provisioning notify.CVE-2024-21461 — CVSS 8.4 (high) : Memory corruption while performing finish HMAC operation when context is freed by keymaster.CVE-2023-43531 — CVSS 8.4 (high) : Memory corruption while verifying the serialized header when the key pairs are generated.CVE-2023-43554 — CVSS 8.4 (high) : Memory corruption while processing IOCTL handler in FastRPC.CVE-2023-43549 — CVSS 8.4 (high) : Memory corruption while processing TPC target power table in FTM TPC.CVE-2023-43540 — CVSS 8.4 (high) : Memory corruption while processing the IOCTL FM HCI WRITE request.CVE-2023-28538 — CVSS 8.4 (high) : Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.CVE-2023-33021 — CVSS 8.4 (high) : Memory corruption in Graphics while processing user packets for command submission.CVE-2023-33023 — CVSS 8.4 (high) : Memory corruption while processing finish_sign command to pass a rsp buffer.CVE-2023-28585 — CVSS 8.2 (high) : Memory corruption while loading an ELF segment in TEE Kernel.CVE-2024-53020 — CVSS 8.2 (high) : Information disclosure may occur while decoding the RTP packet with invalid header extension from network.CVE-2024-38408 — CVSS 8.2 (high) : Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.CVE-2024-23359 — CVSS 8.2 (high) : Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.CVE-2024-49838 — CVSS 8.2 (high) : Information disclosure while parsing the OCI IE with invalid length.CVE-2024-45552 — CVSS 8.2 (high) : Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC…CVE-2024-53021 — CVSS 8.2 (high) : Information disclosure may occur while processing goodbye RTCP packet from network.CVE-2024-53026 — CVSS 8.2 (high) : Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.CVE-2025-21487 — CVSS 8.2 (high) : Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the…CVE-2023-28545 — CVSS 8.2 (high) : Memory corruption in TZ Secure OS while loading an app ELF.CVE-2025-21427 — CVSS 8.2 (high) : Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.CVE-2023-22385 — CVSS 8.2 (high) : Memory Corruption in Data Modem while making a MO call or MT VOLTE call.CVE-2023-24849 — CVSS 8.2 (high) : Information Disclosure in data Modem while parsing an FMTP line in an SDP message.CVE-2023-24848 — CVSS 8.2 (high) : Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.CVE-2025-21484 — CVSS 8.2 (high) : Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.CVE-2023-43555 — CVSS 8.2 (high) : Information disclosure in Video while parsing mp2 clip with invalid section length.CVE-2024-43066 — CVSS 7.8 (high) : Memory corruption while handling file descriptor during listener registration/de-registration.CVE-2025-21421 — CVSS 7.8 (high) : Memory corruption while processing escape code in API.CVE-2025-21423 — CVSS 7.8 (high) : Memory corruption occurs when handling client calls to EnableTestMode through an Escape call.CVE-2026-21379 — CVSS 7.8 (high) : Memory Corruption when allocating memory with sizes that exceed the maximum allowed value.CVE-2026-21378 — CVSS 7.8 (high) : Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21376 — CVSS 7.8 (high) : Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21374 — CVSS 7.8 (high) : Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.CVE-2023-22386 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.CVE-2023-22387 — CVSS 7.8 (high) : Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.CVE-2026-21373 — CVSS 7.8 (high) : Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.CVE-2023-24850 — CVSS 7.8 (high) : Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.CVE-2023-24851 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while parsing QMI response message from firmware.CVE-2023-24854 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.CVE-2026-21371 — CVSS 7.8 (high) : Memory Corruption when retrieving output buffer with insufficient size validation.CVE-2023-28541 — CVSS 7.8 (high) : Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.CVE-2023-28542 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while fetching TX status information.CVE-2023-28544 — CVSS 7.8 (high) : Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.CVE-2023-28546 — CVSS 7.8 (high) : Memory Corruption in SPS Application while exporting public key in sorter TA.CVE-2023-28548 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.CVE-2023-28549 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.CVE-2023-28550 — CVSS 7.8 (high) : Memory corruption in MPP performance while accessing DSM watermark using external memory address.CVE-2023-28551 — CVSS 7.8 (high) : Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.CVE-2025-59605 — CVSS 7.8 (high) : Memory Corruption when processing device identifier strings that exceed the expected maximum length.CVE-2025-59604 — CVSS 7.8 (high) : Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.CVE-2023-28557 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.CVE-2023-28558 — CVSS 7.8 (high) : Memory corruption in WLAN handler while processing PhyID in Tx status handler.CVE-2023-28559 — CVSS 7.8 (high) : Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.CVE-2025-47389 — CVSS 7.8 (high) : Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.CVE-2023-28564 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.CVE-2023-28565 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while handling command streams through WMI interfaces.CVE-2025-47387 — CVSS 7.8 (high) : Memory Corruption when processing IOCTLs for JPEG data without verification.CVE-2023-28567 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while handling command through WMI interfaces.CVE-2025-47386 — CVSS 7.8 (high) : Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.CVE-2025-47379 — CVSS 7.8 (high) : Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of…CVE-2025-47376 — CVSS 7.8 (high) : Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.CVE-2025-47375 — CVSS 7.8 (high) : Memory corruption while handling different IOCTL calls from the user-space simultaneously.CVE-2023-28573 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while parsing WMI command parameters.CVE-2025-47359 — CVSS 7.8 (high) : Memory Corruption when multiple threads simultaneously access a memory free API.CVE-2025-47348 — CVSS 7.8 (high) : Memory corruption while processing identity credential operations in the trusted application.CVE-2025-47327 — CVSS 7.8 (high) : Memory corruption while encoding the image data.CVE-2025-47320 — CVSS 7.8 (high) : Memory corruption while processing MFC channel configuration during music playback.CVE-2023-28587 — CVSS 7.8 (high) : Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.CVE-2025-47316 — CVSS 7.8 (high) : Memory corruption due to double free when multiple threads race to set the timestamp store.CVE-2025-27076 — CVSS 7.8 (high) : Memory corruption while processing simultaneous requests via escape path.CVE-2025-27075 — CVSS 7.8 (high) : Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.CVE-2025-27070 — CVSS 7.8 (high) : Memory corruption while performing encryption and decryption commands.CVE-2025-27063 — CVSS 7.8 (high) : Memory corruption during video playback when video session open fails with time out error.CVE-2025-27061 — CVSS 7.8 (high) : Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.CVE-2025-27055 — CVSS 7.8 (high) : Memory corruption during the image encoding process.CVE-2025-27054 — CVSS 7.8 (high) : Memory corruption while processing a malformed license file during reboot.CVE-2023-33115 — CVSS 7.8 (high) : Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.CVE-2023-33117 — CVSS 7.8 (high) : Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE…CVE-2023-33118 — CVSS 7.8 (high) : Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter…CVE-2023-33120 — CVSS 7.8 (high) : Memory corruption in Audio when memory map command is executed consecutively in ADSP.CVE-2023-43513 — CVSS 7.8 (high) : Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary…CVE-2025-27053 — CVSS 7.8 (high) : Memory corruption during PlayReady APP usecase while processing TA commands.CVE-2025-27050 — CVSS 7.8 (high) : Memory corruption while processing event close when client process terminates abruptly.CVE-2025-27046 — CVSS 7.8 (high) : Memory corruption while processing multiple simultaneous escape calls.CVE-2025-27042 — CVSS 7.8 (high) : Memory corruption while processing video packets received from video firmware.CVE-2025-27037 — CVSS 7.8 (high) : Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference to CPU buffers.CVE-2023-43542 — CVSS 7.8 (high) : Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.CVE-2025-27032 — CVSS 7.8 (high) : memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.CVE-2024-21465 — CVSS 7.8 (high) : Memory corruption while processing key blob passed by the user.CVE-2026-21385 — CVSS 7.8 (high) — actively exploited : Memory corruption while using alignments for memory allocation.CVE-2024-21475 — CVSS 7.8 (high) : Memory corruption when the payload received from firmware is not as per the expected protocol size.CVE-2024-21476 — CVSS 7.8 (high) : Memory corruption when the channel ID passed by user is not validated and further used.CVE-2024-23355 — CVSS 7.8 (high) : Memory corruption when keymaster operation imports a shared key.CVE-2024-23356 — CVSS 7.8 (high) : Memory corruption during session sign renewal request calls in HLOS.CVE-2024-23368 — CVSS 7.8 (high) : Memory corruption when allocating and accessing an entry in an SMEM partition.CVE-2024-23369 — CVSS 7.8 (high) : Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.CVE-2025-21481 — CVSS 7.8 (high) : Memory corruption while performing private key encryption in trusted application.CVE-2025-21475 — CVSS 7.8 (high) : Memory corruption while processing escape code, when DisplayId is passed with large unsigned value.CVE-2024-33042 — CVSS 7.8 (high) : Memory corruption when Alternative Frequency offset value is set to 255.CVE-2025-21474 — CVSS 7.8 (high) : Memory corruption while processing commands from A2dp sink command queue.CVE-2024-33052 — CVSS 7.8 (high) : Memory corruption when user provides data for FM HCI command control operations.CVE-2025-21470 — CVSS 7.8 (high) : Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter.CVE-2025-21467 — CVSS 7.8 (high) : Memory corruption while reading the FW response from the shared queue.CVE-2024-38406 — CVSS 7.8 (high) : Memory corruption while handling IOCTL calls in JPEG Encoder driver.CVE-2024-38407 — CVSS 7.8 (high) : Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.CVE-2024-38415 — CVSS 7.8 (high) : Memory corruption while handling session errors from firmware.CVE-2025-21466 — CVSS 7.8 (high) : Memory corruption while processing a private escape command in an event trigger.CVE-2024-38418 — CVSS 7.8 (high) : Memory corruption while parsing the memory map info in IOCTL calls.CVE-2024-38422 — CVSS 7.8 (high) : Memory corruption while processing voice packet with arbitrary data received from ADSP.CVE-2024-38423 — CVSS 7.8 (high) : Memory corruption while processing GPU page table switch.CVE-2025-21455 — CVSS 7.8 (high) : Memory corruption while submitting blob data to kernel space though IOCTL.CVE-2024-43047 — CVSS 7.8 (high) — actively exploited : Memory corruption while maintaining memory maps of HLOS memory.CVE-2024-43050 — CVSS 7.8 (high) : Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.CVE-2025-21453 — CVSS 7.8 (high) : Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.CVE-2024-43052 — CVSS 7.8 (high) : Memory corruption while processing API calls to NPU with invalid input.CVE-2024-43057 — CVSS 7.8 (high) : Memory corruption while processing command in Glink linux.CVE-2024-43067 — CVSS 7.8 (high) : Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.CVE-2024-45541 — CVSS 7.8 (high) : Memory corruption when IOCTL call is invoked from user-space to read board data.CVE-2024-45542 — CVSS 7.8 (high) : Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.CVE-2025-21441 — CVSS 7.8 (high) : Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.CVE-2025-21440 — CVSS 7.8 (high) : Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.CVE-2024-45560 — CVSS 7.8 (high) : Memory corruption while taking a snapshot with hardware encoder due to unvalidated userspace buffer.CVE-2024-45561 — CVSS 7.8 (high) : Memory corruption while handling IOCTL call from user-space to set latency level.CVE-2024-45564 — CVSS 7.8 (high) : Memory corruption during concurrent access to server info object due to incorrect reference count update.CVE-2024-45566 — CVSS 7.8 (high) : Memory corruption during concurrent buffer access due to modification of the reference count.CVE-2025-21432 — CVSS 7.8 (high) : Memory corruption while retrieving the CBOR data from TA.CVE-2024-49835 — CVSS 7.8 (high) : Memory corruption while reading secure file.CVE-2024-49841 — CVSS 7.8 (high) : Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.CVE-2024-49842 — CVSS 7.8 (high) : Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.CVE-2024-49844 — CVSS 7.8 (high) : Memory corruption while triggering commands in the PlayReady Trusted application.CVE-2024-49845 — CVSS 7.8 (high) : Memory corruption during the FRS UDS generation process.CVE-2024-53010 — CVSS 7.8 (high) : Memory corruption may occur while attaching VM when the HLOS retains access to VM.CVE-2024-53014 — CVSS 7.8 (high) : Memory corruption may occur while validating ports and channels in Audio driver.CVE-2025-21424 — CVSS 7.8 (high) : Memory corruption while calling the NPU driver APIs concurrently.CVE-2024-45549 — CVSS 7.7 (high) : Information disclosure while creating MQ channels.CVE-2024-33058 — CVSS 7.5 (high) : Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.CVE-2023-33057 — CVSS 7.5 (high) : Transient DOS in Multi-Mode Call Processor while processing UE policy container.CVE-2023-33049 — CVSS 7.5 (high) : Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.CVE-2025-21452 — CVSS 7.5 (high) : Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.CVE-2024-33069 — CVSS 7.5 (high) : Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.CVE-2023-43539 — CVSS 7.5 (high) : Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame.CVE-2023-43536 — CVSS 7.5 (high) : Transient DOS while parse fils IE with length equal to 1.CVE-2023-43533 — CVSS 7.5 (high) : Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.CVE-2023-43529 — CVSS 7.5 (high) : Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.CVE-2023-43523 — CVSS 7.5 (high) : Transient DOS while processing 11AZ RTT management action frame received through OTA.CVE-2023-43522 — CVSS 7.5 (high) : Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.CVE-2024-53027 — CVSS 7.5 (high) : Transient DOS may occur while processing the country IE.CVE-2025-21449 — CVSS 7.5 (high) : Transient DOS may occur while processing malformed length field in SSID IEs.CVE-2023-21631 — CVSS 7.5 (high) : Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.CVE-2023-43511 — CVSS 7.5 (high) : Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next…CVE-2023-33040 — CVSS 7.5 (high) : Transient DOS in Data Modem during DTLS handshake.CVE-2023-33109 — CVSS 7.5 (high) : Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.CVE-2023-33104 — CVSS 7.5 (high) : Transient DOS while processing PDU Release command with a parameter PDU ID out of range.CVE-2023-33015 — CVSS 7.5 (high) : Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.CVE-2023-24847 — CVSS 7.5 (high) : Transient DOS in Modem while allocating DSM items.CVE-2024-21477 — CVSS 7.5 (high) : Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.CVE-2024-21479 — CVSS 7.5 (high) : Transient DOS during music playback of ALAC content.CVE-2023-33101 — CVSS 7.5 (high) : Transient DOS while processing DL NAS TRANSPORT message with payload length 0.CVE-2024-23352 — CVSS 7.5 (high) : Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.