Qualcomm Qca8695au Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Qualcomm Qca8695au Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (40)
CVE-2026-24088 — CVSS 8.2 (high): Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader.
CVE-2025-47377 — CVSS 7.8 (high): Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.
CVE-2025-47379 — CVSS 7.8 (high): Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of…
CVE-2025-47397 — CVSS 7.8 (high): Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.
CVE-2025-47398 — CVSS 7.8 (high): Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.
CVE-2025-59604 — CVSS 7.8 (high): Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
CVE-2025-59606 — CVSS 7.8 (high): Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization.
CVE-2026-24085 — CVSS 7.2 (high): Memory Corruption when processing display command line information due to improper initialization of a variable.
CVE-2025-47366 — CVSS 7.1 (high): Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.
CVE-2026-24090 — CVSS 7.1 (high): Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow.
CVE-2026-21383 — CVSS 7.1 (high): Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to…
CVE-2025-47370 — CVSS 6.5 (medium): Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
CVE-2025-47404 — CVSS 6.5 (medium): Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.
CVE-2025-47403 — CVSS 6.5 (medium): Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.
CVE-2025-59610 — CVSS 6.4 (medium): Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer.
CVE-2025-59609 — CVSS 5.5 (medium): Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length.
CVE-2026-21369 — CVSS 5.3 (medium): Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification.