Filtered by vendor Qualcomm
Subscriptions
Filtered by product Qcs8250 Firmware
Subscriptions
Total
117 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-33012 | 1 Qualcomm | 240 Ar8035 Firmware, Ar9380 Firmware, Csr8811 Firmware and 237 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | ||||
| CVE-2024-33034 | 1 Qualcomm | 100 Fastconnect 6200 Firmware, Fastconnect 6700 Firmware, Fastconnect 6900 Firmware and 97 more | 2024-08-06 | 8.4 High |
| Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time. | ||||
| CVE-2024-33025 | 1 Qualcomm | 166 Csr8811 Firmware, Fastconnect 6800 Firmware, Fastconnect 6900 Firmware and 163 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. | ||||
| CVE-2024-33024 | 1 Qualcomm | 178 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 175 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. | ||||
| CVE-2024-33026 | 1 Qualcomm | 164 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 161 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. | ||||
| CVE-2024-33011 | 1 Qualcomm | 240 Ar8035 Firmware, Ar9380 Firmware, Csr8811 Firmware and 237 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. | ||||
| CVE-2024-33010 | 1 Qualcomm | 239 Ar8035 Firmware, Ar9380 Firmware, Csr8811 Firmware and 236 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing fragments of MBSSID IE from beacon frame. | ||||
| CVE-2022-40529 | 1 Qualcomm | 392 Aqt1000, Aqt1000 Firmware, Ar8031 and 389 more | 2024-08-03 | 7.1 High |
| Memory corruption due to improper access control in kernel while processing a mapping request from root process. | ||||
| CVE-2022-40533 | 1 Qualcomm | 220 Csra6620, Csra6620 Firmware, Csra6640 and 217 more | 2024-08-03 | 6.2 Medium |
| Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request. | ||||
| CVE-2022-40523 | 1 Qualcomm | 370 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 367 more | 2024-08-03 | 7.1 High |
| Information disclosure in Kernel due to indirect branch misprediction. | ||||
| CVE-2022-33275 | 1 Qualcomm | 518 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq5053-aa and 515 more | 2024-08-03 | 8.4 High |
| Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. | ||||
| CVE-2022-22076 | 1 Qualcomm | 696 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8953pro and 693 more | 2024-08-03 | 7.1 High |
| information disclosure due to cryptographic issue in Core during RPMB read request. | ||||
| CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2024-08-02 | 7.5 High |
| Transient DOS while parse fils IE with length equal to 1. | ||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-08-02 | 7.8 High |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | ||||
| CVE-2023-43520 | 1 Qualcomm | 140 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 137 more | 2024-08-02 | 8.6 High |
| Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. | ||||
| CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2024-08-02 | 7.5 High |
| Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | ||||
| CVE-2023-43518 | 1 Qualcomm | 306 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 303 more | 2024-08-02 | 7.3 High |
| Memory corruption in video while parsing invalid mp2 clip. | ||||
| CVE-2023-33120 | 1 Qualcomm | 464 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 461 more | 2024-08-02 | 7.8 High |
| Memory corruption in Audio when memory map command is executed consecutively in ADSP. | ||||
| CVE-2023-33117 | 1 Qualcomm | 282 Ar8035, Ar8035 Firmware, Csra6620 and 279 more | 2024-08-02 | 7.8 High |
| Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. | ||||
| CVE-2023-33118 | 1 Qualcomm | 271 Ar8035, Ar8035 Firmware, Csra6620 and 268 more | 2024-08-02 | 7.8 High |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. | ||||