Ipq6018 Firmware Security Vulnerabilities and Issues — Page 3 of Ipq6018 Firmware CVE List

Lucene search

QualcommIpq6018 Firmware

281 matches found

CVE•added 2023/10/03 6:15 a.m.•71 views

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS7.2AI score0.00032EPSS

CVE•added 2023/10/03 6:15 a.m.•70 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2021/02/22 7:15 a.m.•69 views

CVE-2020-3664

Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure...

6CVSS5.9AI score0.00094EPSS

CVE•added 2022/12/13 4:15 p.m.•69 views

CVE-2022-25677

Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

7.8CVSS8AI score0.00032EPSS

CVE•added 2023/02/12 4:15 a.m.•69 views

CVE-2022-40502

Transient DOS due to improper input validation in WLAN Host.

7.5CVSS7.5AI score0.00092EPSS

CVE•added 2023/10/03 6:15 a.m.•69 views

CVE-2023-24847

Transient DOS in Modem while allocating DSM items.

7.5CVSS7.5AI score0.00178EPSS

CVE•added 2023/09/05 7:15 a.m.•69 views

CVE-2023-28544

Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2022/10/19 11:15 a.m.•68 views

CVE-2022-25666

Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

6.7CVSS7AI score0.00042EPSS

CVE•added 2023/01/09 8:15 a.m.•68 views

CVE-2022-25722

Information exposure in DSP services due to improper handling of freeing memory

6CVSS5.5AI score0.00031EPSS

CVE•added 2022/10/19 11:15 a.m.•68 views

CVE-2022-25748

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdr...

9.8CVSS9.8AI score0.00328EPSS

CVE•added 2024/02/06 6:16 a.m.•68 views

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/07/01 3:15 p.m.•68 views

CVE-2024-21457

INformation disclosure while handling Multi-link IE in beacon frame.

7.5CVSS6.6AI score0.00111EPSS

CVE•added 2023/02/12 4:15 a.m.•67 views

CVE-2022-33277

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•67 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2024/04/01 3:15 p.m.•67 views

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file name.

9.8CVSS9.7AI score0.00188EPSS

CVE•added 2023/11/07 6:15 a.m.•66 views

CVE-2023-33056

Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/03/04 11:15 a.m.•66 views

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

7.5CVSS7.7AI score0.02377EPSS

Web

CVE•added 2024/08/05 3:15 p.m.•66 views

CVE-2024-33013

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.

7.5CVSS7.6AI score0.00189EPSS

CVE•added 2023/01/09 8:15 a.m.•65 views

CVE-2022-33283

Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/06/06 8:15 a.m.•65 views

CVE-2023-21658

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/03/04 11:15 a.m.•65 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00111EPSS

CVE•added 2023/12/05 3:15 a.m.•65 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS

CVE•added 2023/10/03 6:15 a.m.•65 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2024/08/05 3:15 p.m.•65 views

CVE-2024-33026

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2022/06/14 10:15 a.m.•64 views

CVE-2021-30349

Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infra...

8.2CVSS6.8AI score0.00107EPSS

CVE•added 2023/01/09 8:15 a.m.•64 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

7.5CVSS6.7AI score0.00158EPSS

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2023-21661

Transient DOS while parsing WLAN beacon or probe-response frame.

7.5CVSS7.6AI score0.00158EPSS

CVE•added 2023/03/10 9:15 p.m.•63 views

CVE-2022-25655

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

8.4CVSS8.2AI score0.00067EPSS

CVE•added 2023/11/07 6:15 a.m.•63 views

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

8.4CVSS7.8AI score0.00054EPSS

CVE•added 2024/01/02 6:15 a.m.•63 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/03/04 11:15 a.m.•63 views

CVE-2023-43549

Memory corruption while processing TPC target power table in FTM TPC.

8.4CVSS8.6AI score0.00124EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00071EPSS

CVE•added 2022/12/13 4:15 p.m.•62 views

CVE-2022-33235

Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

8.2CVSS7.7AI score0.00091EPSS

CVE•added 2023/01/09 8:15 a.m.•62 views

CVE-2022-40516

Memory corruption in Core due to stack-based buffer overflow.

8.4CVSS8.1AI score0.04308EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/09/05 7:15 a.m.•62 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•62 views

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/01/02 6:15 a.m.•62 views

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

7.5CVSS7.5AI score0.00322EPSS

CVE•added 2024/06/03 10:15 a.m.•62 views

CVE-2024-23363

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.

7.5CVSS7.6AI score0.00228EPSS

CVE•added 2020/11/02 7:15 a.m.•61 views

CVE-2020-3657

u'Remote code execution can happen by sending a carefully crafted POST query when Device configuration is accessed from a tethered client through webserver due to lack of array bound check.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil...

10CVSS9.4AI score0.03072EPSS

CVE•added 2022/11/15 10:15 a.m.•61 views

CVE-2022-33239

Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

7.5CVSS7.6AI score0.00233EPSS

CVE•added 2024/02/06 6:16 a.m.•61 views

CVE-2023-43523

Transient DOS while processing 11AZ RTT management action frame received through OTA.

7.5CVSS7.5AI score0.00144EPSS

CVE•added 2024/08/05 3:15 p.m.•61 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2024/08/05 3:15 p.m.•61 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2020/09/08 10:15 a.m.•60 views

CVE-2020-11117

u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ6018, IPQ806...

9.8CVSS9.6AI score0.03589EPSS

CVE•added 2021/02/22 7:15 a.m.•60 views

CVE-2020-11204

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

7.8CVSS7.7AI score0.00039EPSS

CVE•added 2023/09/05 7:15 a.m.•60 views

CVE-2023-28564

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

7.8CVSS8AI score0.0003EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

9.3CVSS7.7AI score0.0006EPSS

CVE•added 2023/11/07 6:15 a.m.•60 views

CVE-2023-33048

Transient DOS in WLAN Firmware while parsing t2lm buffers.