Qca0000 Firmware@- Security Vulnerabilities and Issues — Page 2 of Qca0000 Firmware@- CVE List

Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap...

7.5CVSS7.7AI score0.00154EPSS

CVE•added 2023/12/05 3:15 a.m.•55 views

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS8.1AI score0.00068EPSS

CVE•added 2022/12/13 4:15 p.m.•54 views

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

7.5CVSS7.6AI score0.00182EPSS

CVE•added 2023/12/05 3:15 a.m.•53 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/10/07 1:15 p.m.•52 views

CVE-2024-38397

Transient DOS while parsing probe response and assoc response frame.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2024/06/03 10:15 a.m.•50 views

CVE-2023-43537

Information disclosure while handling T2LM Action Frame in WLAN Host.

7.5CVSS6.4AI score0.00091EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2024/12/02 11:15 a.m.•49 views

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

8.4CVSS8.6AI score0.00033EPSS

CVE•added 2024/10/07 1:15 p.m.•46 views

CVE-2024-33073

Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.

8.2CVSS8.2AI score0.00183EPSS

CVE•added 2023/01/09 8:15 a.m.•45 views

CVE-2022-33286

Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.

7.5CVSS6.7AI score0.00123EPSS

CVE•added 2025/06/03 6:15 a.m.•45 views

CVE-2025-27029

Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.

7.5CVSS7.7AI score0.00055EPSS

CVE•added 2024/07/01 3:15 p.m.•43 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00071EPSS

CVE•added 2021/10/20 7:15 a.m.•42 views

CVE-2020-11303

Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice...

8.6CVSS7.2AI score0.0024EPSS

CVE•added 2024/08/05 3:15 p.m.•42 views

CVE-2024-21467

Information disclosure while handling beacon probe frame during scan entry generation in client side.

7.5CVSS6.5AI score0.00101EPSS

CVE•added 2024/05/06 3:15 p.m.•42 views

CVE-2024-21477

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.

7.5CVSS6.8AI score0.00294EPSS

CVE•added 2025/03/03 11:15 a.m.•42 views

CVE-2024-43057

Memory corruption while processing command in Glink linux.

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2021/09/17 7:15 a.m.•40 views

CVE-2021-30260

Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT,...

8.4CVSS8AI score0.00054EPSS

CVE•added 2024/08/05 3:15 p.m.•40 views

CVE-2024-21459

Information disclosure while handling beacon or probe response frame in STA.

7.5CVSS6.5AI score0.00126EPSS

CVE•added 2025/04/07 11:15 a.m.•35 views

CVE-2024-45556

Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.

6.5CVSS6.8AI score0.0001EPSS

CVE•added 2025/07/08 1:15 p.m.•20 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.