53 matches found
CVE-2025-47401
CVE-2025-47401 indicates a transient denial of service caused by a buffer over-read in the WLAN HAL during channel configuration while processing target power rate tables. The description across sources confirms the issue and impact to availability, but no concrete exploitation details, affected ...
CVE-2021-0547
In onReceive of NetInitiatedActivity.java, there is a possible way to supply an attacker-controlled value to a GPS HAL handler due to a missing permission check. This could lead to local escalation of privilege that may result in undefined behavior in some HAL implementations with no additional...
CVE-2022-33275
Memory corruption due to improper validation of array index in WLAN HAL when received lmitemNum is out of range...
EUVD-2019-2851
Malware in sbrugna...
EUVD-2023-47923
Malicious code in bioql PyPI...
The vulnerability of the WLAN HAL microprogramming system component in Qualcomm’s embedded chips allows a hacker to trigger a service failure.
The vulnerability of the WLAN HAL microprogramming system component in Qualcomm’s embedded chips relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...
CVE-2025-27029 Buffer Over-read in WLAN HAL
Transient DOS while processing the tone measurement response buffer when the response buffer is out of range...
OESA-2025-1572 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: add srng-lock for ath11khalsrng in monitor mode ath11khalsrng should be used with srng-lock to protect srng data. For ath11kdprxmondestprocess and...
CVE-2023-28569
Information disclosure in WLAN HAL while handling command through WMI interfaces...
CVE-2023-28566
Information disclosure in WLAN HAL while handling the WMI state info command...
CVE-2023-28565
Memory corruption in WLAN HAL while handling command streams through WMI interfaces...
CVE-2023-28567
Memory corruption in WLAN HAL while handling command through WMI interfaces...
CVE-2023-28564
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces...
CVE-2023-28549
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload...
CVE-2023-28573
Memory corruption in WLAN HAL while parsing WMI command parameters...
CVE-2025-21425
Memory corruption may occur due top improper access control in HAB process...
CVE-2022-25655
Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload...
CVE-2025-23366
A flaw was found in the HAL Console in the Wildfly component, which does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as a web page that is served to other users. The attacker must be authenticated as a user that belongs to management groups...
Wildfly 跨站脚本漏洞
Wildfly is a powerful, modular and lightweight application server from Wildfly. A cross-site scripting vulnerability exists in Wildfly that stems from improper neutralization of input in the HAL Console component, which results in that input being output as a web page and served to other users...
PT-2024-10658 · Mediatek · Mediatek Gps Hal
Name of the Vulnerable Software and Affected Versions: Mediatek GPS HAL affected versions not specified Description: The issue is related to a possible out of bounds write in the update gps sv and output vzw debug functions of the gpshal worker.c file, due to a missing bounds check. This could le...