Qca6554a Firmware Security Vulnerabilities and Issues — Qca6554a Firmware CVE List

Lucene search

QualcommQca6554a Firmware

107 matches found

CVE•added 2022/04/01 5:15 a.m.•131 views

CVE-2021-35103

Possible out of bound write due to improper validation of number of timer values received from firmware while syncing timers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Netwo...

7.8CVSS7.7AI score0.00101EPSS

CVE•added 2022/04/01 5:15 a.m.•124 views

CVE-2021-35106

Possible out of bound read due to improper length calculation of WMI message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS7.6AI score0.00094EPSS

CVE•added 2022/02/11 11:15 a.m.•121 views

CVE-2021-35069

Improper validation of data length received from DMA buffer can lead to memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.8AI score0.00119EPSS

CVE•added 2023/06/06 8:15 a.m.•114 views

CVE-2023-21656

Memory corruption in WLAN HOST while receiving an WMI event from firmware.

7.8CVSS7.9AI score0.00053EPSS

CVE•added 2024/12/02 11:15 a.m.•102 views

CVE-2024-33063

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.

7.5CVSS7.6AI score0.00172EPSS

CVE•added 2023/07/04 5:15 a.m.•97 views

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2025/01/06 11:15 a.m.•93 views

CVE-2024-45558

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

7.5CVSS7.5AI score0.00089EPSS

CVE•added 2023/07/04 5:15 a.m.•89 views

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•89 views

CVE-2023-33019

Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.

7.5CVSS7.5AI score0.00063EPSS

CVE•added 2025/05/06 9:15 a.m.•89 views

CVE-2025-21459

Transient DOS while parsing per STA profile in ML IE.

7.5CVSS7.6AI score0.00071EPSS

CVE•added 2023/07/04 5:15 a.m.•88 views

CVE-2023-28542

Memory Corruption in WLAN HOST while fetching TX status information.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•88 views

CVE-2023-28584

Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).

7.5CVSS7.5AI score0.00061EPSS

CVE•added 2023/07/04 5:15 a.m.•87 views

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2023/07/04 5:15 a.m.•86 views

CVE-2023-24854

Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2025/03/03 11:15 a.m.•86 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.0008EPSS

CVE•added 2023/08/08 10:15 a.m.•85 views

CVE-2023-21649

Memory corruption in WLAN while running doDriverCmd for an unspecific command.

7.8CVSS7AI score0.00034EPSS

CVE•added 2022/11/15 10:15 a.m.•84 views

CVE-2022-25741

Denial of service in WLAN due to potential null pointer dereference while accessing the memory location in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.5AI score0.00204EPSS

CVE•added 2025/02/03 5:15 p.m.•84 views

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2024/09/02 12:15 p.m.•81 views

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2024/09/02 12:15 p.m.•79 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

CVE•added 2023/02/12 4:15 a.m.•78 views

CVE-2022-40512

Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.

7.5CVSS7.6AI score0.00123EPSS

CVE•added 2024/10/07 1:15 p.m.•77 views

CVE-2024-33049

Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2024/09/02 12:15 p.m.•77 views

CVE-2024-33057

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

7.5CVSS7.5AI score0.00264EPSS

CVE•added 2024/10/07 1:15 p.m.•76 views

CVE-2024-33069

Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.

7.5CVSS7.5AI score0.00161EPSS

CVE•added 2023/11/07 6:15 a.m.•74 views

CVE-2023-28570

Memory corruption while processing audio effects.

7.8CVSS7.2AI score0.0004EPSS

CVE•added 2023/02/12 4:15 a.m.•71 views

CVE-2022-34146

Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.

7.5CVSS7.5AI score0.00154EPSS

CVE•added 2023/02/12 4:15 a.m.•70 views

CVE-2022-33306

Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.

7.5CVSS7.6AI score0.00123EPSS

CVE•added 2024/02/06 6:16 a.m.•70 views

CVE-2023-43533

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2024/07/01 3:15 p.m.•70 views

CVE-2024-21458

Information disclosure while handling SA query action frame.

7.5CVSS6.6AI score0.00111EPSS

CVE•added 2023/02/12 4:15 a.m.•69 views

CVE-2022-34145

Transient DOS due to buffer over-read in WLAN Host while parsing frame information.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2023/02/12 4:15 a.m.•68 views

CVE-2022-40502

Transient DOS due to improper input validation in WLAN Host.

7.5CVSS7.5AI score0.00092EPSS

CVE•added 2023/09/05 7:15 a.m.•68 views

CVE-2023-28544

Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2023/10/03 6:15 a.m.•68 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2024/11/04 10:15 a.m.•68 views

CVE-2024-38405

Transient DOS while processing the CU information from RNR IE.

7.5CVSS6.8AI score0.00162EPSS

CVE•added 2024/02/06 6:16 a.m.•67 views

CVE-2023-43536

Transient DOS while parse fils IE with length equal to 1.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/07/01 3:15 p.m.•67 views

CVE-2024-21466

Information disclosure while parsing sub-IE length during new IE generation.

7.5CVSS6.6AI score0.00127EPSS

CVE•added 2023/10/03 6:15 a.m.•66 views

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS7.2AI score0.00032EPSS

CVE•added 2024/01/02 6:15 a.m.•66 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2023/11/07 6:15 a.m.•65 views

CVE-2023-33056

Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2023-21658

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/10/03 6:15 a.m.•64 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2023/01/09 8:15 a.m.•63 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

7.5CVSS6.7AI score0.00158EPSS

CVE•added 2024/07/01 3:15 p.m.•63 views

CVE-2024-21457

INformation disclosure while handling Multi-link IE in beacon frame.

7.5CVSS6.6AI score0.00111EPSS

CVE•added 2024/01/02 6:15 a.m.•62 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•61 views

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/06/03 10:15 a.m.•61 views

CVE-2024-23363

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.

7.5CVSS7.6AI score0.00298EPSS

CVE•added 2024/08/05 3:15 p.m.•61 views

CVE-2024-33013

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.

7.5CVSS7.6AI score0.00189EPSS

CVE•added 2022/11/15 10:15 a.m.•60 views

CVE-2022-33239

Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

7.5CVSS7.6AI score0.00233EPSS

Total number of security vulnerabilities107