Total
180 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-40514 | 1 Qualcomm | 456 Aqt1000, Aqt1000 Firmware, Ar8031 and 453 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. | |||||
CVE-2022-40513 | 1 Qualcomm | 118 Csr8811, Csr8811 Firmware, Ipq5010 and 115 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state. | |||||
CVE-2022-40512 | 1 Qualcomm | 590 Apq8009, Apq8009 Firmware, Apq8017 and 587 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. | |||||
CVE-2022-40502 | 1 Qualcomm | 192 Csr8811, Csr8811 Firmware, Ipq5010 and 189 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to improper input validation in WLAN Host. | |||||
CVE-2022-34146 | 1 Qualcomm | 194 Csr8811, Csr8811 Firmware, Ipq5010 and 191 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation. | |||||
CVE-2022-34145 | 1 Qualcomm | 188 Csr8811, Csr8811 Firmware, Ipq5010 and 185 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to buffer over-read in WLAN Host while parsing frame information. | |||||
CVE-2022-33309 | 1 Qualcomm | 130 Csr8811, Csr8811 Firmware, Ipq5010 and 127 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes. | |||||
CVE-2022-33306 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Ar9380 and 259 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs. | |||||
CVE-2022-33279 | 1 Qualcomm | 148 Ar9380, Ar9380 Firmware, Csr8811 and 145 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. | |||||
CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. | |||||
CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. | |||||
CVE-2022-33271 | 1 Qualcomm | 490 Apq8096au, Apq8096au Firmware, Aqt1000 and 487 more | 2024-04-12 | N/A | 7.5 HIGH |
Information disclosure due to buffer over-read in WLAN while parsing NMF frame. | |||||
CVE-2022-33243 | 1 Qualcomm | 314 Apq8096au, Apq8096au Firmware, Aqt1000 and 311 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption due to improper access control in Qualcomm IPC. | |||||
CVE-2022-25655 | 1 Qualcomm | 476 Apq8009, Apq8009 Firmware, Apq8017 and 473 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. | |||||
CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-04-12 | N/A | 5.5 MEDIUM |
information disclosure due to cryptographic issue in Core during RPMB read request. | |||||
CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while parse fils IE with length equal to 1. | |||||
CVE-2023-43523 | 1 Qualcomm | 284 Ar8035, Ar8035 Firmware, Csr8811 and 281 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while processing 11AZ RTT management action frame received through OTA. | |||||
CVE-2023-43522 | 1 Qualcomm | 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | |||||
CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | |||||
CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2024-04-12 | N/A | 7.5 HIGH |
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. |