| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM. |
| Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
| Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state. |
| Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. |
| Transient DOS due to improper input validation in WLAN Host. |
| Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation. |
| Transient DOS due to buffer over-read in WLAN Host while parsing frame information. |
| Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes. |
| Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs. |
| Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. |
| Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
| Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
| Memory corruption due to improper access control in Qualcomm IPC. |
| Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. |
| Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking |
| information disclosure due to cryptographic issue in Core during RPMB read request. |
| Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Possible out of bound write due to improper validation of number of timer values received from firmware while syncing timers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
