Ipq5028 Firmware Security Vulnerabilities and Issues — Ipq5028 Firmware CVE List

Lucene search

QualcommIpq5028 Firmware

108 matches found

CVE•added 2022/04/01 5:15 a.m.•114 views

CVE-2021-35103

Possible out of bound write due to improper validation of number of timer values received from firmware while syncing timers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Netwo...

7.8CVSS7.7AI score0.00101EPSS

CVE•added 2022/02/11 11:15 a.m.•103 views

CVE-2021-35069

Improper validation of data length received from DMA buffer can lead to memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.8AI score0.00119EPSS

CVE•added 2021/07/13 6:15 a.m.•98 views

CVE-2021-1954

Possible buffer over read due to improper validation of data pointer while parsing FILS indication IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.6AI score0.00394EPSS

CVE•added 2021/07/13 6:15 a.m.•93 views

CVE-2021-1945

Possible out of bound read due to lack of length check of Bandwidth-NSS IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.5AI score0.00305EPSS

CVE•added 2021/07/13 6:15 a.m.•92 views

CVE-2021-1943

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.6AI score0.00394EPSS

CVE•added 2021/07/13 6:15 a.m.•87 views

CVE-2021-1964

Possible buffer over read due to improper validation of IE size while parsing beacon from peer device in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.6AI score0.00394EPSS

CVE•added 2023/07/04 5:15 a.m.•80 views

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2023/07/04 5:15 a.m.•79 views

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2021/07/13 6:15 a.m.•78 views

CVE-2021-1953

Improper handling of received malformed FTMR request frame can lead to reachable assertion while responding with FTM1 frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2023/02/12 4:15 a.m.•78 views

CVE-2022-40512

Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.

7.5CVSS7.6AI score0.00123EPSS

CVE•added 2025/01/06 11:15 a.m.•75 views

CVE-2024-45558

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

7.5CVSS7.5AI score0.00074EPSS

CVE•added 2023/02/12 4:15 a.m.•74 views

CVE-2022-40513

Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.

7.5CVSS7.5AI score0.00107EPSS

CVE•added 2023/02/12 4:15 a.m.•71 views

CVE-2022-34146

Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.

7.5CVSS7.5AI score0.00154EPSS

CVE•added 2023/07/04 5:15 a.m.•71 views

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2021/07/13 6:15 a.m.•70 views

CVE-2021-1938

Possible assertion due to improper verification while creating and deleting the peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdr...

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2023/02/12 4:15 a.m.•70 views

CVE-2022-33306

Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.

7.5CVSS7.6AI score0.00123EPSS

CVE•added 2023/03/10 9:15 p.m.•69 views

CVE-2022-33309

Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.

7.5CVSS7.6AI score0.00134EPSS

CVE•added 2023/02/12 4:15 a.m.•69 views

CVE-2022-34145

Transient DOS due to buffer over-read in WLAN Host while parsing frame information.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2023/07/04 5:15 a.m.•69 views

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2023/09/05 7:15 a.m.•68 views

CVE-2023-28544

Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/07/01 3:15 p.m.•68 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2023/02/12 4:15 a.m.•67 views

CVE-2022-40502

Transient DOS due to improper input validation in WLAN Host.

7.5CVSS7.5AI score0.00092EPSS

CVE•added 2023/10/03 6:15 a.m.•66 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2025/02/03 5:15 p.m.•66 views

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2023/11/07 6:15 a.m.•65 views

CVE-2023-33056

Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2023-21658

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/03/04 11:15 a.m.•64 views

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

7.5CVSS7.7AI score0.02377EPSS

CVE•added 2024/01/02 6:15 a.m.•64 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2023/06/06 8:15 a.m.•63 views

CVE-2023-21661

Transient DOS while parsing WLAN beacon or probe-response frame.

7.5CVSS7.6AI score0.00158EPSS

CVE•added 2023/01/09 8:15 a.m.•62 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

7.5CVSS6.7AI score0.00158EPSS

CVE•added 2023/10/03 6:15 a.m.•62 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2024/09/02 12:15 p.m.•62 views

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00071EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2024/01/02 6:15 a.m.•61 views

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

7.5CVSS7.5AI score0.00322EPSS

CVE•added 2024/06/03 10:15 a.m.•61 views

CVE-2024-23363

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.

7.5CVSS7.6AI score0.00197EPSS

CVE•added 2024/09/02 12:15 p.m.•61 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2022/11/15 10:15 a.m.•60 views

CVE-2022-33239

Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

7.5CVSS7.6AI score0.00187EPSS

CVE•added 2023/09/05 7:15 a.m.•60 views

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in log.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•60 views

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.