18 matches found
CVE-2026-7764
An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to disclose a small amount of kernel heap memory or cause a Denial of Service kernel oops/panic via a...
EUVD-2026-34189
An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to disclose a small amount of kernel heap memory or cause a Denial of Service kernel oops/panic via a...
CVE-2026-7764
An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to disclose a small amount of kernel heap memory or cause a Denial of Service kernel oops/panic via a...
CVE-2026-7764 Out-of-bounds read in morse.ko Vendor IE processing
An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to disclose a small amount of kernel heap memory or cause a Denial of Service kernel oops/panic via a...
CVE-2026-7764 Out-of-bounds read in morse.ko Vendor IE processing
An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to disclose a small amount of kernel heap memory or cause a Denial of Service kernel oops/panic via a...
CVE-2026-7764
The CVE-2026-7764 entry documents an out-of-bounds read in Morse Micro HaLowLink 2 software (versions prior to 2.11.12) affecting the morse.ko HaLow Wi‑Fi kernel driver. An unauthenticated attacker within radio range can trigger a heap out-of-bounds read (up to 9 bytes) or a Denial of Service by ...
PT-2026-46128
Name of the Vulnerable Software and Affected Versions Morse Micro HaLowLink 2 versions prior to 2.11.12 Description An out-of-bounds read exists in the morse.ko HaLow Wi-Fi kernel driver. An unauthenticated attacker within radio range can disclose a small amount of kernel heap memory or cause a...
CVE-2025-47395
Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element...
CVE-2025-47395
CVE-2025-47395 concerns Qualcomm chipsets’ WLAN firmware. The issue is a transient denial-of-service that occurs while parsing a WLAN management frame containing a Vendor Specific Information Element. Impact is the potential disruption of service (availability) with no confidentiality/integrity l...
PT-2026-1545
Name of the Vulnerable Software and Affected Versions versions prior to 2025-47395 Description A temporary denial-of-service DoS condition can occur during the processing of a Wireless Local Area Network WLAN management frame that includes a Vendor Specific Information Element. Recommendations At...
PT-2023-24174 · Qualcomm · 315 5G Iot Modem Firmware +317
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a Transient Denial of Service DOS that occurs while parsing a vendor-specific Information Element IE of a reassociation response...
SUSE CVE-2019-9502
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164 bytes, a heap buffer overflow is triggered in wlcwpaplumbgtk. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated...
SUSE CVE-2019-9501
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. By supplying a vendor information element with a data length larger than 32 bytes, a heap buffer overflow is triggered in wlcwpasupeapol. In the worst case scenario, by sending specially-crafted WiFi packets, a remote,...
CVE-2019-9502
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164 bytes, a heap buffer overflow is triggered in wlcwpaplumbgtk. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated...
CVE-2019-9501
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. By supplying a vendor information element with a data length larger than 32 bytes, a heap buffer overflow is triggered in wlcwpasupeapol. In the worst case scenario, by sending specially-crafted WiFi packets, a remote,...
Heap overflow
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. By supplying a vendor information element with a data length larger than 32 bytes, a heap buffer overflow is triggered in wlcwpasupeapol. In the worst case scenario, by sending specially-crafted WiFi packets, a remote,...
Heap overflow
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164 bytes, a heap buffer overflow is triggered in wlcwpaplumbgtk. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated...
CVE-2019-9502 Broadcom wl driver is vulnerable to heap buffer overflow
The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164 bytes, a heap buffer overflow is triggered in wlcwpaplumbgtk. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated...