Qca6174a Firmware Security Vulnerabilities and Issues — Page 2 of Qca6174a Firmware CVE List

Lucene search

QualcommQca6174a Firmware

93 matches found

CVE•added 2024/01/02 6:15 a.m.•61 views

CVE-2023-33118

Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.

7.8CVSS7.9AI score0.0011EPSS

CVE•added 2024/06/03 10:15 a.m.•61 views

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00095EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

9.3CVSS7.7AI score0.0006EPSS

CVE•added 2024/03/04 11:15 a.m.•60 views

CVE-2023-33095

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.

7.5CVSS7.6AI score0.00144EPSS

CVE•added 2024/01/02 6:15 a.m.•58 views

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

9.3CVSS7.8AI score0.0006EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33096

Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33103

Transient DOS while processing CAG info IE received from NW.

7.5CVSS7.6AI score0.00144EPSS

CVE•added 2024/03/04 11:15 a.m.•57 views

CVE-2023-33104

Transient DOS while processing PDU Release command with a parameter PDU ID out of range.

7.5CVSS7.7AI score0.00144EPSS

CVE•added 2024/02/06 6:16 a.m.•57 views

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.

7.5CVSS7.5AI score0.00145EPSS

CVE•added 2024/07/01 3:15 p.m.•56 views

CVE-2024-21465

Memory corruption while processing key blob passed by the user.

7.8CVSS7.9AI score0.00098EPSS

CVE•added 2024/12/02 11:15 a.m.•56 views

CVE-2024-33044

Memory corruption while Configuring the SMR/S2CR register in Bypass mode.

8.4CVSS8.6AI score0.00033EPSS

CVE•added 2024/01/02 6:15 a.m.•52 views

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

7.5CVSS7.5AI score0.00229EPSS

CVE•added 2024/07/01 3:15 p.m.•51 views

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

7.8CVSS7.4AI score0.00109EPSS

CVE•added 2024/05/06 3:15 p.m.•51 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2024/12/02 11:15 a.m.•49 views

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

8.4CVSS8.6AI score0.00033EPSS

CVE•added 2024/01/02 6:15 a.m.•48 views

CVE-2023-33038

Memory corruption while receiving a message in Bus Socket Transport Server.

7.8CVSS7.7AI score0.00042EPSS

CVE•added 2024/05/06 3:15 p.m.•48 views

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.

8.4CVSS7AI score0.00035EPSS

CVE•added 2024/09/02 12:15 p.m.•48 views

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2024/06/03 10:15 a.m.•46 views

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately checked.

7.8CVSS7.8AI score0.00041EPSS

CVE•added 2024/07/01 3:15 p.m.•46 views

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4CVSS8.3AI score0.00098EPSS

CVE•added 2024/10/07 1:15 p.m.•46 views

CVE-2024-23369

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/10/07 1:15 p.m.•46 views

CVE-2024-23374

Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file.

6.7CVSS6.7AI score0.00029EPSS

CVE•added 2024/05/06 3:15 p.m.•45 views

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are generated.

8.4CVSS7.1AI score0.00045EPSS

CVE•added 2024/06/03 10:15 a.m.•44 views

CVE-2023-43538

Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.

9.3CVSS9.5AI score0.00041EPSS

CVE•added 2024/05/06 3:15 p.m.•43 views

CVE-2023-43530

Memory corruption in HLOS while checking for the storage type.

7.8CVSS7.1AI score0.00042EPSS

CVE•added 2024/07/01 3:15 p.m.•43 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00071EPSS

CVE•added 2024/12/02 11:15 a.m.•43 views

CVE-2024-43050

Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2024/10/07 1:15 p.m.•42 views

CVE-2024-23376

Memory corruption while sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call.

6.7CVSS6.8AI score0.00029EPSS

CVE•added 2024/11/04 10:15 a.m.•41 views

CVE-2024-38419

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/11/04 10:15 a.m.•40 views

CVE-2024-23385

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

7.5CVSS7AI score0.00079EPSS

CVE•added 2024/05/06 3:15 p.m.•39 views

CVE-2023-43529

Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.

7.5CVSS6.9AI score0.00153EPSS

CVE•added 2024/11/04 10:15 a.m.•39 views

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

9.1CVSS9AI score0.00083EPSS

CVE•added 2024/12/02 11:15 a.m.•38 views

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.

6.1CVSS6.2AI score0.00025EPSS

CVE•added 2024/11/04 10:15 a.m.•37 views

CVE-2024-38424

Memory corruption during GNSS HAL process initialization.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•24 views

CVE-2024-33022

Memory corruption while allocating memory in HGSL driver.

8.4CVSS8.6AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•23 views

CVE-2024-23357

Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.

6.2CVSS6.4AI score0.00033EPSS

CVE•added 2024/08/05 3:15 p.m.•21 views

CVE-2024-21481

Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.

8.4CVSS8.6AI score0.00034EPSS

CVE•added 2024/08/05 3:15 p.m.•21 views

CVE-2024-23352

Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.

7.5CVSS7.6AI score0.00066EPSS

CVE•added 2024/08/05 3:15 p.m.•19 views

CVE-2024-23350

Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.

6.5CVSS6.5AI score0.00021EPSS

CVE•added 2024/08/05 3:15 p.m.•19 views

CVE-2024-23356

Memory corruption during session sign renewal request calls in HLOS.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•18 views

CVE-2024-23355

Memory corruption when keymaster operation imports a shared key.

7.8CVSS7.9AI score0.00035EPSS

CVE•added 2024/08/05 3:15 p.m.•17 views

CVE-2024-33021

Memory corruption while processing IOCTL call to set metainfo.