Search Results (366888 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-33081 1 Qualcomm 298 Aqt1000, Aqt1000 Firmware, Ar8035 and 295 more 2024-11-21 7.5 High
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
CVE-2023-33061 1 Qualcomm 230 Ar8035, Ar8035 Firmware, Csr8811 and 227 more 2024-11-21 7.5 High
Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.
CVE-2023-33060 1 Qualcomm 94 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 91 more 2024-11-21 7.1 High
Transient DOS in Core when DDR memory check is called while DDR is not initialized.
CVE-2023-33058 1 Qualcomm 94 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 91 more 2024-11-21 8.2 High
Information disclosure in Modem while processing SIB5.
CVE-2023-33056 1 Qualcomm 232 Ar8035, Ar8035 Firmware, Csr8811 and 229 more 2024-11-21 7.5 High
Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.
CVE-2023-33048 1 Qualcomm 232 Ar8035, Ar8035 Firmware, Csr8811 and 229 more 2024-11-21 7.5 High
Transient DOS in WLAN Firmware while parsing t2lm buffers.
CVE-2023-33045 1 Qualcomm 265 Ar8035, Ar8035 Firmware, Csr8811 and 262 more 2024-11-21 9.8 Critical
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
CVE-2023-33041 1 Qualcomm 254 Ar8035, Ar8035 Firmware, Csr8811 and 251 more 2024-11-21 7.5 High
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.
CVE-2023-33038 1 Qualcomm 288 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 285 more 2024-11-21 6.7 Medium
Memory corruption while receiving a message in Bus Socket Transport Server.
CVE-2023-33036 1 Qualcomm 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more 2024-11-21 7.1 High
Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.
CVE-2023-33021 1 Qualcomm 336 Apq8064au, Apq8064au Firmware, Aqt1000 and 333 more 2024-11-21 8.4 High
Memory corruption in Graphics while processing user packets for command submission.
CVE-2023-33020 1 Qualcomm 164 205, 205 Firmware, 215 and 161 more 2024-11-21 7.5 High
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
CVE-2023-33019 1 Qualcomm 193 205, 205 Firmware, 215 and 190 more 2024-11-21 7.5 High
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
CVE-2023-33016 1 Qualcomm 132 Csr8811, Csr8811 Firmware, Fastconnect 6900 and 129 more 2024-11-21 7.5 High
Transient DOS in WLAN firmware while parsing MLO (multi-link operation).
CVE-2023-33015 1 Qualcomm 388 315 5g, 315 5g Firmware, Aqt1000 and 385 more 2024-11-21 7.5 High
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
CVE-2023-33013 1 Zyxel 2 Nbg6604, Nbg6604 Firmware 2024-11-21 8.8 High
A post-authentication command injection vulnerability in the NTP feature of Zyxel NBG6604 firmware version V1.01(ABIR.1)C0 could allow an authenticated attacker to execute some OS commands remotely by sending a crafted HTTP request.
CVE-2023-33011 1 Zyxel 49 Atp100 Firmware, Usg20w-vpn Firmware, Usg 20w-vpn and 46 more 2024-11-21 8.8 High
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5.10 through 5.36 Patch 2, USG20(W)-VPN series firmware versions 5.10 through 5.36 Patch 2, and VPN series firmware versions 5.00 through 5.36 Patch 2, could allow an unauthenticated, LAN-based attacker to execute some OS commands by using a crafted PPPoE configuration on an affected device when the cloud management mode is enabled.
CVE-2023-33008 2 Apache, Redhat 4 Johnzon, Amq Broker, Camel Spring Boot and 1 more 2024-11-21 5.3 Medium
Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache Johnzon. A malicious attacker can craft up some JSON input that uses large numbers (numbers such asĀ 1e20000000) that Apache Johnzon will deserialize into BigDecimal and maybe use numbers too large which may result in a slow conversion (Denial of service risk). Apache Johnzon 1.2.21 mitigates this by setting a scale limit of 1000 (by default) to the BigDecimal. This issue affects Apache Johnzon: through 1.2.20.
CVE-2023-32976 1 Qnap 1 Container Station 2024-11-21 6.6 Medium
An OS command injection vulnerability has been reported to affect Container Station. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following version: Container Station 2.6.7.44 and later
CVE-2023-32974 1 Qnap 3 Qts, Quts Hero, Qutscloud 2024-11-21 7.5 High
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to read the contents of unexpected files and expose sensitive data via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.0.2444 build 20230629 and later QuTS hero h5.1.0.2424 build 20230609 and later QuTScloud c5.1.0.2498 and later