Filtered by vendor Qualcomm
Subscriptions
Filtered by product Qcn6274 Firmware
Subscriptions
Total
139 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-33021 | 1 Qualcomm | 134 Ar8035 Firmware, Csra6620 Firmware, Csra6640 Firmware and 131 more | 2024-08-06 | 8.4 High |
| Memory corruption while processing IOCTL call to set metainfo. | ||||
| CVE-2024-23353 | 1 Qualcomm | 212 315 5g Iot Modem Firmware, 9205 Lte Modem Firmware, 9206 Lte Modem Firmware and 209 more | 2024-08-06 | 7.5 High |
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | ||||
| CVE-2024-33015 | 1 Qualcomm | 190 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6200 Firmware and 187 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. | ||||
| CVE-2024-23352 | 1 Qualcomm | 92 315 5g Iot Modem Firmware, Ar8035 Firmware, Fastconnect 6200 Firmware and 89 more | 2024-08-06 | 7.5 High |
| Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. | ||||
| CVE-2024-33013 | 1 Qualcomm | 169 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 166 more | 2024-08-06 | 7.5 High |
| Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length. | ||||
| CVE-2024-33018 | 1 Qualcomm | 150 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 147 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. | ||||
| CVE-2024-33019 | 1 Qualcomm | 148 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 145 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping action frame. | ||||
| CVE-2024-33028 | 1 Qualcomm | 134 Ar8035 Firmware, Csra6620 Firmware, Csra6640 Firmware and 131 more | 2024-08-06 | 8.4 High |
| Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released. | ||||
| CVE-2024-33022 | 1 Qualcomm | 121 Ar8035 Firmware, Csra6620 Firmware, Csra6640 Firmware and 118 more | 2024-08-06 | 8.4 High |
| Memory corruption while allocating memory in HGSL driver. | ||||
| CVE-2024-33026 | 1 Qualcomm | 164 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 161 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. | ||||
| CVE-2024-33010 | 1 Qualcomm | 239 Ar8035 Firmware, Ar9380 Firmware, Csr8811 Firmware and 236 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing fragments of MBSSID IE from beacon frame. | ||||
| CVE-2024-33024 | 1 Qualcomm | 178 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 175 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. | ||||
| CVE-2024-33012 | 1 Qualcomm | 240 Ar8035 Firmware, Ar9380 Firmware, Csr8811 Firmware and 237 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | ||||
| CVE-2024-33011 | 1 Qualcomm | 240 Ar8035 Firmware, Ar9380 Firmware, Csr8811 Firmware and 237 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. | ||||
| CVE-2024-33014 | 1 Qualcomm | 304 315 5g Iot Modem Firmware, Apq8064au Firmware, Aqt1000 Firmware and 301 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing ESP IE from beacon/probe response frame. | ||||
| CVE-2024-23350 | 1 Qualcomm | 25 Ar8035 Firmware, Fastconnect 6900 Firmware, Fastconnect 7800 Firmware and 22 more | 2024-08-06 | 6.5 Medium |
| Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network. | ||||
| CVE-2024-33020 | 1 Qualcomm | 95 Ar8035 Firmware, Fastconnect 6700 Firmware, Fastconnect 6800 Firmware and 92 more | 2024-08-06 | 7.5 High |
| Transient DOS while processing TID-to-link mapping IE elements. | ||||
| CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2024-08-02 | 7.5 High |
| Transient DOS while parse fils IE with length equal to 1. | ||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-08-02 | 7.8 High |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | ||||
| CVE-2023-43523 | 1 Qualcomm | 284 Ar8035, Ar8035 Firmware, Csr8811 and 281 more | 2024-08-02 | 7.5 High |
| Transient DOS while processing 11AZ RTT management action frame received through OTA. | ||||