Fastconnect 6900 Firmware@- Security Vulnerabilities and Issues — Page 2 of Fastconnect 6900 Firmware@- CVE List

Lucene search

QualcommFastconnect 6900 Firmware-

382 matches found

CVE•added 2023/09/05 7:15 a.m.•82 views

CVE-2023-28584

Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).

7.5CVSS7.5AI score0.00061EPSS

CVE•added 2024/01/02 6:15 a.m.•82 views

CVE-2023-33113

Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.

8.4CVSS7.7AI score0.0011EPSS

CVE•added 2023/11/07 6:15 a.m.•81 views

CVE-2023-28572

Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.

8.8CVSS7.3AI score0.00102EPSS

CVE•added 2024/02/06 6:15 a.m.•81 views

CVE-2023-33064

Transient DOS in Audio when invoking callback function of ASM driver.

5.5CVSS5.5AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•81 views

CVE-2024-45580

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.

7.8CVSS7.6AI score0.00024EPSS

CVE•added 2023/07/04 5:15 a.m.•80 views

CVE-2023-21672

Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.

8.4CVSS8.1AI score0.00045EPSS

CVE•added 2024/01/02 6:15 a.m.•80 views

CVE-2023-43514

Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.

8.4CVSS7.8AI score0.00112EPSS

CVE•added 2024/05/06 3:15 p.m.•80 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00082EPSS

CVE•added 2024/07/01 3:15 p.m.•80 views

CVE-2024-23372

Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.

8.4CVSS8.3AI score0.00112EPSS

CVE•added 2024/07/01 3:15 p.m.•80 views

CVE-2024-23380

Memory corruption while handling user packets during VBO bind operation.

8.4CVSS8.2AI score0.00156EPSS

CVE•added 2023/10/03 6:15 a.m.•79 views

CVE-2023-24849

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

8.2CVSS7.5AI score0.00137EPSS

CVE•added 2023/07/04 5:15 a.m.•79 views

CVE-2023-24854

Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2023/10/03 6:15 a.m.•79 views

CVE-2023-24855

Memory corruption in Modem while processing security related configuration before AS Security Exchange.

9.8CVSS9.1AI score0.00213EPSS

CVE•added 2024/05/06 3:15 p.m.•79 views

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.

8.4CVSS7.1AI score0.00084EPSS

CVE•added 2024/07/01 3:15 p.m.•79 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS7.9AI score0.00098EPSS

CVE•added 2024/11/04 10:15 a.m.•79 views

CVE-2024-38415

Memory corruption while handling session errors from firmware.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2023/11/07 6:15 a.m.•78 views

CVE-2023-28569

Information disclosure in WLAN HAL while handling command through WMI interfaces.

6.1CVSS5.7AI score0.00054EPSS

CVE•added 2023/08/08 10:15 a.m.•78 views

CVE-2023-28577

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.

7.8CVSS6.9AI score0.00027EPSS

CVE•added 2024/02/06 6:15 a.m.•78 views

CVE-2023-33058

Information disclosure in Modem while processing SIB5.

9.1CVSS8.9AI score0.00082EPSS

CVE•added 2024/09/02 12:15 p.m.•78 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS

CVE•added 2025/02/03 5:15 p.m.•78 views

CVE-2024-49833

Memory corruption can occur in the camera when an invalid CID is used.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•78 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.0008EPSS

CVE•added 2023/11/07 6:15 a.m.•77 views

CVE-2023-28568

Information disclosure in WLAN HAL when reception status handler is called.

6.1CVSS5.6AI score0.00054EPSS

CVE•added 2024/02/06 6:15 a.m.•77 views

CVE-2023-33065

Information disclosure in Audio while accessing AVCS services from ADSP payload.

7.1CVSS6.8AI score0.00027EPSS

CVE•added 2024/09/02 12:15 p.m.•77 views

CVE-2024-33042

Memory corruption when Alternative Frequency offset value is set to 255.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2025/02/03 5:15 p.m.•77 views

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•77 views

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/04/01 3:15 p.m.•76 views

CVE-2023-33115

Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.

7.8CVSS8AI score0.00044EPSS

CVE•added 2025/02/03 5:15 p.m.•76 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00053EPSS

CVE•added 2025/02/03 5:15 p.m.•76 views

CVE-2024-49839

Memory corruption during management frame processing due to mismatch in T2LM info element.

9.8CVSS8.4AI score0.00072EPSS

CVE•added 2025/05/06 9:15 a.m.•76 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2025/02/03 5:15 p.m.•75 views

CVE-2024-45582

Memory corruption while validating number of devices in Camera kernel .

7.8CVSS7.8AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•75 views

CVE-2024-53024

Memory corruption in display driver while detaching a device.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2023/11/07 6:15 a.m.•74 views

CVE-2023-28570

Memory corruption while processing audio effects.

7.8CVSS7.2AI score0.0004EPSS

CVE•added 2023/08/08 10:15 a.m.•74 views

CVE-2023-28575

The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.

7.8CVSS6.9AI score0.00038EPSS

CVE•added 2024/09/02 12:15 p.m.•74 views

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

7.8CVSS8AI score0.00039EPSS

CVE•added 2025/03/03 11:15 a.m.•74 views

CVE-2024-49836

Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2024/09/02 12:15 p.m.•73 views

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2024/10/07 1:15 p.m.•73 views

CVE-2024-38399

Memory corruption while processing user packets to generate page faults.

8.4CVSS8.2AI score0.00035EPSS

CVE•added 2025/01/06 11:15 a.m.•73 views

CVE-2024-45553

Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.

7.8CVSS7.9AI score0.00027EPSS

CVE•added 2025/03/03 11:15 a.m.•73 views

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2024/02/06 6:15 a.m.•72 views

CVE-2023-33049

Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.

7.5CVSS7.5AI score0.00092EPSS

CVE•added 2024/02/06 6:16 a.m.•72 views

CVE-2023-33072

Memory corruption in Core while processing control functions.