Lucene search

Sdx65M Firmware Security Vulnerabilities

cve

CVE-2022-33309

Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.

7.5CVSS

7.6AI Score

0.001EPSS

2023-03-10 09:15 PM

cve

CVE-2022-40527

Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.

7.5CVSS

7.4AI Score

0.001EPSS

2023-03-10 09:15 PM

cve

CVE-2022-40530

Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.

8.4CVSS

8AI Score

0.0004EPSS

2023-03-10 09:15 PM

cve

CVE-2022-40531

Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.

8.4CVSS

7.7AI Score

0.0004EPSS

2023-03-10 09:15 PM

cve

CVE-2022-40535

Transient DOS due to buffer over-read in WLAN while sending a packet to device.

7.5CVSS

7.5AI Score

0.001EPSS

2023-03-10 09:15 PM

cve

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in log.

7.8CVSS

7.9AI Score

0.0004EPSS

2023-09-05 07:15 AM

cve

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in log.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-09-05 07:15 AM

cve

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS

7.5AI Score

0.0004EPSS

2023-07-04 05:15 AM

cve

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS

7.6AI Score

0.001EPSS

2023-07-04 05:15 AM

cve

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

8.4CVSS

7.5AI Score

0.0004EPSS

2023-11-07 06:15 AM

cve

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-10-03 06:15 AM

cve

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-07-04 05:15 AM

cve

CVE-2023-28553

Information Disclosure in WLAN Host when processing WMI event command.

6.1CVSS

5.3AI Score

0.0004EPSS

2023-11-07 06:15 AM

cve

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS

8.8AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS

6.4AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS

7.5AI Score

0.001EPSS

2023-10-03 06:15 AM

cve

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS

7.5AI Score

0.001EPSS

2023-10-03 06:15 AM

cve

CVE-2023-33028

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

9.8CVSS

8.3AI Score

0.001EPSS

2023-10-03 06:15 AM

cve

CVE-2023-33041

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33045

Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.

9.8CVSS

9.5AI Score

0.001EPSS

2023-11-07 06:15 AM

cve

CVE-2023-33047

Transient DOS in WLAN Firmware while parsing no-inherit IES.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-11-07 06:15 AM

cve

CVE-2023-33048

Transient DOS in WLAN Firmware while parsing t2lm buffers.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-11-07 06:15 AM

cve

CVE-2023-33053

Memory corruption in Kernel while parsing metadata.

8.4CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33056

Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-11-07 06:15 AM

cve

CVE-2023-33061

Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-11-07 06:15 AM

cve

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS

7.5AI Score

0.0004EPSS

2024-01-02 06:15 AM

cve

CVE-2023-33072

Memory corruption in Core while processing control functions.

9.3CVSS

7.8AI Score

0.0004EPSS

2024-02-06 06:16 AM

cve

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33082

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

9.8CVSS

9.6AI Score

0.001EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33083

Memory corruption in WLAN Host while processing RRM beacon on the AP.

9.8CVSS

9.5AI Score

0.001EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS

7.6AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33097

Transient DOS in WLAN Firmware while processing a FTMR frame.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33098

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-12-05 03:15 AM

cve

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS

7.6AI Score

0.0005EPSS

2024-01-02 06:15 AM

cve

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

7.5CVSS

7.5AI Score

0.0004EPSS

2024-01-02 06:15 AM

cve

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS

7.5AI Score

0.0004EPSS

2024-01-02 06:15 AM

cve

CVE-2023-43523

Transient DOS while processing 11AZ RTT management action frame received through OTA.

7.5CVSS

7.5AI Score

0.0005EPSS

2024-02-06 06:16 AM

cve

CVE-2024-21457

INformation disclosure while handling Multi-link IE in beacon frame.

7.5CVSS

6.5AI Score

0.001EPSS

2024-07-01 03:15 PM

cve

CVE-2024-21458

Information disclosure while handling SA query action frame.

7.5CVSS

6.5AI Score

0.001EPSS

2024-07-01 03:15 PM

cve

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS

7AI Score

0.0004EPSS

2024-07-01 03:15 PM

cve

CVE-2024-21482

Memory corruption during the secure boot process, when the bootm command is used, it bypasses the authentication of the kernel/rootfs image.

7.8CVSS

7.1AI Score

0.0004EPSS

2024-07-01 03:15 PM

cve

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS

7.9AI Score

0.0004EPSS

2024-07-01 03:15 PM

cve

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS

7.6AI Score

0.0005EPSS

2024-09-02 12:15 PM

cve

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS

7.6AI Score

0.0005EPSS

2024-09-02 12:15 PM

cve

CVE-2024-33057

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

7.5CVSS

7.5AI Score

0.0005EPSS

2024-09-02 12:15 PM