| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS while parsing probe response and assoc response frame. |
| Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. |
| Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. |
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. |
| Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. |
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. |
| Transient DOS while parsing WPA IES, when it is passed with length more than expected size. |
| Memory Corruption in WLAN HOST while parsing QMI response message from firmware. |
| Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. |
| Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command. |
| Transient DOS in WLAN Firmware while parsing a NAN management frame. |
| Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. |
| Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware. |
| Information disclosure while handling T2LM Action Frame in WLAN Host. |
| Memory Corruption in Core due to secure memory access by user while loading modem image. |
| Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. |
| Transient DOS while processing 11AZ RTT management action frame received through OTA. |
| Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver. |
| Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. |
| Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
