Total
160 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-33023 | 1 Qualcomm | 314 Ar8035, Ar8035 Firmware, Csra6620 and 311 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events. | |||||
CVE-2024-33020 | 1 Qualcomm | 196 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 193 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while processing TID-to-link mapping IE elements. | |||||
CVE-2024-33019 | 1 Qualcomm | 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more | 2024-11-20 | N/A | 7.5 HIGH |
Transient DOS while parsing the received TID-to-link mapping action frame. | |||||
CVE-2024-33034 | 1 Qualcomm | 210 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 207 more | 2024-11-20 | N/A | 7.8 HIGH |
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time. | |||||
CVE-2024-38408 | 1 Qualcomm | 470 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 467 more | 2024-11-08 | N/A | 9.1 CRITICAL |
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | |||||
CVE-2024-33068 | 1 Qualcomm | 244 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 241 more | 2024-11-07 | N/A | 6.5 MEDIUM |
Transient DOS while parsing fragments of MBSSID IE from beacon frame. | |||||
CVE-2024-38403 | 1 Qualcomm | 156 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 153 more | 2024-11-07 | N/A | 6.5 MEDIUM |
Transient DOS while parsing BTM ML IE when per STA profile is not included. | |||||
CVE-2024-38405 | 1 Qualcomm | 198 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 195 more | 2024-11-07 | N/A | 6.5 MEDIUM |
Transient DOS while processing the CU information from RNR IE. | |||||
CVE-2024-23377 | 1 Qualcomm | 78 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 75 more | 2024-11-07 | N/A | 6.7 MEDIUM |
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver. | |||||
CVE-2024-38415 | 1 Qualcomm | 356 215 Mobile Platform, 215 Mobile Platform Firmware, Ar8035 and 353 more | 2024-11-07 | N/A | 7.8 HIGH |
Memory corruption while handling session errors from firmware. | |||||
CVE-2024-33073 | 1 Qualcomm | 318 Ar8035, Ar8035 Firmware, Csr8811 and 315 more | 2024-10-16 | N/A | 8.2 HIGH |
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. | |||||
CVE-2024-38397 | 1 Qualcomm | 232 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 229 more | 2024-10-16 | N/A | 7.5 HIGH |
Transient DOS while parsing probe response and assoc response frame. | |||||
CVE-2024-38402 | 1 Qualcomm | 336 Ar8035, Ar8035 Firmware, Csra6620 and 333 more | 2024-09-05 | N/A | 7.8 HIGH |
Memory corruption while processing IOCTL call for getting group info. | |||||
CVE-2024-33038 | 1 Qualcomm | 90 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 87 more | 2024-09-04 | N/A | 7.8 HIGH |
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA. | |||||
CVE-2024-33045 | 1 Qualcomm | 360 Ar8035, Ar8035 Firmware, Csra6620 and 357 more | 2024-09-04 | N/A | 7.8 HIGH |
Memory corruption when BTFM client sends new messages over Slimbus to ADSP. | |||||
CVE-2024-33048 | 1 Qualcomm | 378 Ar8035, Ar8035 Firmware, Csr8811 and 375 more | 2024-09-04 | N/A | 7.5 HIGH |
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | |||||
CVE-2024-33051 | 1 Qualcomm | 578 315 5g Iot, 315 5g Iot Firmware, 9206 Lte and 575 more | 2024-09-04 | N/A | 7.5 HIGH |
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | |||||
CVE-2024-33050 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more | 2024-09-04 | N/A | 7.5 HIGH |
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | |||||
CVE-2024-33057 | 1 Qualcomm | 342 Ar8035, Ar8035 Firmware, Csr8811 and 339 more | 2024-09-04 | N/A | 7.5 HIGH |
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. | |||||
CVE-2024-33060 | 1 Qualcomm | 500 215 Mobile, 215 Mobile Firmware, 315 5g Iot and 497 more | 2024-09-04 | N/A | 7.8 HIGH |
Memory corruption when two threads try to map and unmap a single node simultaneously. |