Filtered by vendor Qualcomm
Subscriptions
Filtered by product Wsa8845h Firmware
Subscriptions
Total
160 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-23350 | 1 Qualcomm | 25 Ar8035 Firmware, Fastconnect 6900 Firmware, Fastconnect 7800 Firmware and 22 more | 2024-08-06 | 6.5 Medium |
| Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network. | ||||
| CVE-2024-33026 | 1 Qualcomm | 164 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 161 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. | ||||
| CVE-2024-33028 | 1 Qualcomm | 134 Ar8035 Firmware, Csra6620 Firmware, Csra6640 Firmware and 131 more | 2024-08-06 | 8.4 High |
| Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released. | ||||
| CVE-2024-33034 | 1 Qualcomm | 100 Fastconnect 6200 Firmware, Fastconnect 6700 Firmware, Fastconnect 6900 Firmware and 97 more | 2024-08-06 | 8.4 High |
| Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time. | ||||
| CVE-2024-33020 | 1 Qualcomm | 95 Ar8035 Firmware, Fastconnect 6700 Firmware, Fastconnect 6800 Firmware and 92 more | 2024-08-06 | 7.5 High |
| Transient DOS while processing TID-to-link mapping IE elements. | ||||
| CVE-2024-33019 | 1 Qualcomm | 148 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 145 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping action frame. | ||||
| CVE-2024-33018 | 1 Qualcomm | 150 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 147 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. | ||||
| CVE-2024-33021 | 1 Qualcomm | 134 Ar8035 Firmware, Csra6620 Firmware, Csra6640 Firmware and 131 more | 2024-08-06 | 8.4 High |
| Memory corruption while processing IOCTL call to set metainfo. | ||||
| CVE-2024-33015 | 1 Qualcomm | 190 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6200 Firmware and 187 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. | ||||
| CVE-2024-33014 | 1 Qualcomm | 304 315 5g Iot Modem Firmware, Apq8064au Firmware, Aqt1000 Firmware and 301 more | 2024-08-06 | 7.5 High |
| Transient DOS while parsing ESP IE from beacon/probe response frame. | ||||
| CVE-2024-33013 | 1 Qualcomm | 169 Ar8035 Firmware, Csr8811 Firmware, Fastconnect 6700 Firmware and 166 more | 2024-08-06 | 7.5 High |
| Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length. | ||||
| CVE-2022-25750 | 1 Qualcomm | 30 Kailua, Kailua Firmware, Sg8275 and 27 more | 2024-08-03 | 8.4 High |
| Memory corruption in BTHOST due to double free while music playback and calls over bluetooth headset in Snapdragon Mobile | ||||
| CVE-2023-43532 | 1 Qualcomm | 26 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 23 more | 2024-08-02 | 8.4 High |
| Memory corruption while reading ACPI config through the user mode app. | ||||
| CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2024-08-02 | 7.5 High |
| Transient DOS while parse fils IE with length equal to 1. | ||||
| CVE-2023-43535 | 1 Qualcomm | 26 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 23 more | 2024-08-02 | 8.4 High |
| Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE event trigger. | ||||
| CVE-2023-43513 | 1 Qualcomm | 534 315 5g Iot Modem, 315 5g Iot Modem Firmware, Apq8017 and 531 more | 2024-08-02 | 7.8 High |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | ||||
| CVE-2023-43523 | 1 Qualcomm | 284 Ar8035, Ar8035 Firmware, Csr8811 and 281 more | 2024-08-02 | 7.5 High |
| Transient DOS while processing 11AZ RTT management action frame received through OTA. | ||||
| CVE-2023-43520 | 1 Qualcomm | 140 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 137 more | 2024-08-02 | 8.6 High |
| Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. | ||||
| CVE-2023-43533 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 473 more | 2024-08-02 | 7.5 High |
| Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame. | ||||
| CVE-2023-43511 | 1 Qualcomm | 712 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 709 more | 2024-08-02 | 7.5 High |
| Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | ||||