Total
209 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-33045 | 1 Qualcomm | 258 Ar8035, Ar8035 Firmware, Csr8811 and 255 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
|
|||||
| CVE-2023-33041 | 1 Qualcomm | 254 Ar8035, Ar8035 Firmware, Csr8811 and 251 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.
|
|||||
| CVE-2023-33032 | 1 Qualcomm | 234 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 231 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
|
|||||
| CVE-2023-33016 | 1 Qualcomm | 132 Csr8811, Csr8811 Firmware, Fastconnect 6900 and 129 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN firmware while parsing MLO (multi-link operation).
|
|||||
| CVE-2023-28573 | 1 Qualcomm | 398 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 395 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while parsing WMI command parameters.
|
|||||
| CVE-2023-28567 | 1 Qualcomm | 582 315 5g Iot, 315 5g Iot Firmware, Aqt1000 and 579 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while handling command through WMI interfaces.
|
|||||
| CVE-2023-28557 | 1 Qualcomm | 556 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 553 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
|
|||||
| CVE-2023-28553 | 1 Qualcomm | 288 Ar8035, Ar8035 Firmware, Ar9380 and 285 more | 2024-11-21 | N/A | 6.1 MEDIUM |
|
Information Disclosure in WLAN Host when processing WMI event command.
|
|||||
| CVE-2023-28549 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 447 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
|
|||||
| CVE-2023-28548 | 1 Qualcomm | 366 Aqt1000, Aqt1000 Firmware, Ar8035 and 363 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.
|
|||||
| CVE-2023-21664 | 1 Qualcomm | 274 Aqt1000, Aqt1000 Firmware, Ar8035 and 271 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory Corruption in Core Platform while printing the response buffer in log.
|
|||||
| CVE-2023-21662 | 1 Qualcomm | 272 Aqt1000, Aqt1000 Firmware, Ar8035 and 269 more | 2024-11-21 | N/A | 7.8 HIGH |
|
Memory corruption in Core Platform while printing the response buffer in log.
|
|||||
| CVE-2023-21661 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Ar9380 and 227 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS while parsing WLAN beacon or probe-response frame.
|
|||||
| CVE-2023-21660 | 1 Qualcomm | 158 Csr8811, Csr8811 Firmware, Immersive Home 214 Platform and 155 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing FT Information Elements.
|
|||||
| CVE-2023-21659 | 1 Qualcomm | 540 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 537 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing frames with missing header fields.
|
|||||
| CVE-2023-21658 | 1 Qualcomm | 302 Ar8035, Ar8035 Firmware, Ar9380 and 299 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
|
|||||
| CVE-2022-40535 | 1 Qualcomm | 142 Csr8811, Csr8811 Firmware, Ipq8070a and 139 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while sending a packet to device.
|
|||||
| CVE-2022-40532 | 1 Qualcomm | 706 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8905 and 703 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
|
|||||
| CVE-2022-40531 | 1 Qualcomm | 568 Apq8009, Apq8009 Firmware, Apq8017 and 565 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
|
|||||
| CVE-2022-40530 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8031 and 375 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
|
|||||
| CVE-2022-40527 | 1 Qualcomm | 198 Ar8035, Ar8035 Firmware, Csr8811 and 195 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
|
|||||
| CVE-2022-40525 | 1 Qualcomm | 62 Csr8811, Csr8811 Firmware, Ipq6000 and 59 more | 2024-11-21 | N/A | 7.1 HIGH |
|
Information disclosure in Linux Networking Firmware due to unauthorized information leak during side channel analysis.
|
|||||
| CVE-2022-40522 | 1 Qualcomm | 108 Csr8811, Csr8811 Firmware, Ipq6000 and 105 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in Linux Networking due to double free while handling a hyp-assign.
|
|||||
| CVE-2022-40514 | 1 Qualcomm | 456 Aqt1000, Aqt1000 Firmware, Ar8031 and 453 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
|
|||||
| CVE-2022-40513 | 1 Qualcomm | 118 Csr8811, Csr8811 Firmware, Ipq5010 and 115 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.
|
|||||
| CVE-2022-40512 | 1 Qualcomm | 590 Apq8009, Apq8009 Firmware, Apq8017 and 587 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
|
|||||
| CVE-2022-40502 | 1 Qualcomm | 192 Csr8811, Csr8811 Firmware, Ipq5010 and 189 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper input validation in WLAN Host.
|
|||||
| CVE-2022-34146 | 1 Qualcomm | 194 Csr8811, Csr8811 Firmware, Ipq5010 and 191 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.
|
|||||
| CVE-2022-34145 | 1 Qualcomm | 188 Csr8811, Csr8811 Firmware, Ipq5010 and 185 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN Host while parsing frame information.
|
|||||
| CVE-2022-33309 | 1 Qualcomm | 130 Csr8811, Csr8811 Firmware, Ipq5010 and 127 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
|
|||||
| CVE-2022-33306 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Ar9380 and 259 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
|
|||||
| CVE-2022-33279 | 1 Qualcomm | 148 Ar9380, Ar9380 Firmware, Csr8811 and 145 more | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length.
|
|||||
| CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
|
|||||
| CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2024-11-21 | N/A | 8.4 HIGH |
|
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
|
|||||
| CVE-2022-33271 | 1 Qualcomm | 490 Apq8096au, Apq8096au Firmware, Aqt1000 and 487 more | 2024-11-21 | N/A | 8.2 HIGH |
|
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
|
|||||
| CVE-2022-33231 | 1 Qualcomm | 438 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 435 more | 2024-11-21 | N/A | 9.3 CRITICAL |
|
Memory corruption due to double free in core while initializing the encryption key.
|
|||||
| CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-11-21 | N/A | 7.1 HIGH |
|
information disclosure due to cryptographic issue in Core during RPMB read request.
|
|||||
| CVE-2024-33014 | 1 Qualcomm | 650 315 5g Iot Modem, 315 5g Iot Modem Firmware, 860 Mobile Platform and 647 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing ESP IE from beacon/probe response frame.
|
|||||
| CVE-2024-33015 | 1 Qualcomm | 390 Ar8035, Ar8035 Firmware, Csr8811 and 387 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
|
|||||
| CVE-2024-33025 | 1 Qualcomm | 338 Csr8811, Csr8811 Firmware, Fastconnect 6800 and 335 more | 2024-11-20 | N/A | 7.5 HIGH |
|
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
|
|||||