Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
Qualcomm, Inc. Snapdragon

Version IPQ4028

OTHER 47 CVEs

Known Vulnerabilities

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

HIGH CVSS 7.5 Published Sep 02, 2024

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

HIGH CVSS 7.5 Published Aug 05, 2024

CVE-2024-21459

Information disclosure while handling beacon or probe response frame in STA.

MEDIUM CVSS 6.5 Published Aug 05, 2024

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

HIGH CVSS 7.8 Published Jul 01, 2024

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file name.

CRITICAL CVSS 9.8 Published Apr 01, 2024

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

HIGH CVSS 7.5 Published Mar 04, 2024

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

HIGH CVSS 7.5 Published Feb 06, 2024

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

HIGH CVSS 7.5 Published Jan 02, 2024

CVE-2023-33083

Memory corruption in WLAN Host while processing RRM beacon on the AP.

CRITICAL CVSS 9.8 Published Dec 05, 2023

CVE-2023-33082

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

CRITICAL CVSS 9.8 Published Dec 05, 2023

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

HIGH CVSS 7.5 Published Dec 05, 2023

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

HIGH CVSS 7.8 Published Dec 05, 2023

CVE-2023-28569

Information disclosure in WLAN HAL while handling command through WMI interfaces.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-28563

Information disclosure in IOE Firmware while handling WMI command.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-28554

Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-28553

Information Disclosure in WLAN Host when processing WMI event command.

MEDIUM CVSS 6.1 Published Nov 07, 2023

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

HIGH CVSS 7.5 Published Oct 03, 2023

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

MEDIUM CVSS 6.6 Published Oct 03, 2023

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

HIGH CVSS 7.5 Published Sep 05, 2023

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28565

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28564

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28560

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28558

Memory corruption in WLAN handler while processing PhyID in Tx status handler.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28557

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28549

Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2023-28544

Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.

HIGH CVSS 7.8 Published Sep 05, 2023

CVE-2022-33275

Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.

HIGH CVSS 8.4 Published Sep 05, 2023

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

HIGH CVSS 7.8 Published Jul 04, 2023

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.

HIGH CVSS 7.8 Published Jul 04, 2023

CVE-2023-21628

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

HIGH CVSS 8.4 Published Jun 06, 2023

CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

HIGH CVSS 8.4 Published Apr 04, 2023

CVE-2022-40531

Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.

HIGH CVSS 8.4 Published Mar 07, 2023

CVE-2022-25655

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

HIGH CVSS 8.4 Published Mar 07, 2023

CVE-2022-40512

Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.

HIGH CVSS 7.5 Published Feb 09, 2023

CVE-2022-33279

Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length.

CRITICAL CVSS 9.8 Published Feb 09, 2023

CVE-2022-33277

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

HIGH CVSS 8.4 Published Feb 09, 2023

CVE-2022-33243

Memory corruption due to improper access control in Qualcomm IPC.

HIGH CVSS 8.4 Published Feb 09, 2023

CVE-2022-33286

Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.

HIGH CVSS 7.5 Published Jan 06, 2023

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

HIGH CVSS 7.5 Published Jan 06, 2023

CVE-2022-25722

Information exposure in DSP services due to improper handling of freeing memory

MEDIUM CVSS 6.0 Published Jan 06, 2023