| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption when allocating and accessing an entry in an SMEM partition continuously. |
| Memory corruption in WLAN Host while processing RRM beacon on the AP. |
| Memory corruption when allocating and accessing an entry in an SMEM partition. |
| Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE. |
| Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids. |
| Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. |
| Memory corruption in WLAN HAL while parsing WMI command parameters. |
| Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. |
| Transient DOS in WLAN Firmware while processing frames with missing header fields. |
| Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. |
| Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. |
| Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. |
| Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM. |
| Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. |
| Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
| Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
| Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking |
| information disclosure due to cryptographic issue in Core during RPMB read request. |
| Possible out of bound write due to improper validation of number of timer values received from firmware while syncing timers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
