Qca6574au Firmware Security Vulnerabilities and Issues — Page 11 of Qca6574au Firmware CVE List

Lucene search

QualcommQca6574au Firmware

961 matches found

CVE•added 2024/03/04 11:15 a.m.•60 views

CVE-2023-33086

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

7.5CVSS7.5AI score0.00143EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33118

Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.

7.8CVSS7.9AI score0.0011EPSS

CVE•added 2024/02/06 6:16 a.m.•60 views

CVE-2023-43523

Transient DOS while processing 11AZ RTT management action frame received through OTA.

7.5CVSS7.5AI score0.00144EPSS

CVE•added 2024/06/03 10:15 a.m.•60 views

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00095EPSS

CVE•added 2024/08/05 3:15 p.m.•60 views

CVE-2024-33013

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.

7.5CVSS7.6AI score0.00189EPSS

CVE•added 2025/05/06 9:15 a.m.•60 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00017EPSS

CVE•added 2018/09/20 1:29 p.m.•59 views

CVE-2018-5871

In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, S...

6.5CVSS6.7AI score0.00067EPSS

CVE•added 2020/03/05 9:15 a.m.•59 views

CVE-2019-14079

Access to the uninitialized variable when the driver tries to unmap the dma buffer of a request which was never mapped in the first place leading to kernel failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in ...

7.8CVSS7.6AI score0.00949EPSS

CVE•added 2021/02/22 7:15 a.m.•59 views

CVE-2020-11204

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

7.8CVSS7.7AI score0.00039EPSS

CVE•added 2020/06/02 3:15 p.m.•59 views

CVE-2020-3615

Valid deauth/disassoc frames is dropped in case if RMF is enabled and some rouge peer keep on sending rogue deauth/disassoc frames due to improper enum values used to check the frame subtype in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IO...

9.8CVSS9.3AI score0.00336EPSS

CVE•added 2020/11/02 7:15 a.m.•59 views

CVE-2020-3657

u'Remote code execution can happen by sending a carefully crafted POST query when Device configuration is accessed from a tethered client through webserver due to lack of array bound check.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil...

10CVSS9.4AI score0.03072EPSS

CVE•added 2022/09/02 12:15 p.m.•59 views

CVE-2022-22070

Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2023/01/09 8:15 a.m.•59 views

CVE-2022-22079

Denial of service while processing fastboot flash command on mmc due to buffer over read

4.6CVSS4.9AI score0.0007EPSS

CVE•added 2023/03/10 9:15 p.m.•59 views

CVE-2022-33260

Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.

7.8CVSS7AI score0.00032EPSS

CVE•added 2023/06/06 8:15 a.m.•59 views

CVE-2022-33263

Memory corruption due to use after free in Core when multiple DCI clients register and deregister.

7.8CVSS7.3AI score0.00033EPSS

CVE•added 2023/04/13 7:15 a.m.•59 views

CVE-2022-33282

Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.

8.4CVSS8.2AI score0.00046EPSS

CVE•added 2023/07/04 5:15 a.m.•59 views

CVE-2023-21637

Memory corruption in Linux while calling system configuration APIs.

7.8CVSS7AI score0.00029EPSS

CVE•added 2023/09/05 7:15 a.m.•59 views

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in log.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2023/11/07 6:15 a.m.•59 views

CVE-2023-28545

Memory corruption in TZ Secure OS while loading an app ELF.

8.2CVSS8AI score0.0004EPSS

CVE•added 2023/09/05 7:15 a.m.•59 views

CVE-2023-28564

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

7.8CVSS8AI score0.0003EPSS

CVE•added 2024/01/02 6:15 a.m.•59 views

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

9.3CVSS7.7AI score0.0006EPSS

CVE•added 2024/02/06 6:15 a.m.•59 views

CVE-2023-33046

Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.

7.8CVSS7.2AI score0.00018EPSS

CVE•added 2023/11/07 6:15 a.m.•59 views

CVE-2023-33048

Transient DOS in WLAN Firmware while parsing t2lm buffers.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2024/01/02 6:15 a.m.•59 views

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2024/08/05 3:15 p.m.•59 views

CVE-2024-33026

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2019/09/30 4:15 p.m.•58 views

CVE-2019-10540

Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapd...

10CVSS9.5AI score0.00941EPSS

CVE•added 2021/01/21 10:15 a.m.•58 views

CVE-2020-11119

Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, ...

7.5CVSS7.8AI score0.0026EPSS

CVE•added 2021/03/17 6:15 a.m.•58 views

CVE-2020-11192

Out of bound write while parsing SDP string due to missing check on null termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

10CVSS9.3AI score0.00396EPSS

CVE•added 2022/09/02 12:15 p.m.•58 views

CVE-2021-35135

A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.2CVSS5.7AI score0.00047EPSS

CVE•added 2022/09/16 6:15 a.m.•58 views

CVE-2022-25654

Memory corruption in kernel due to improper input validation while processing ION commands in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

6.7CVSS6.8AI score0.00033EPSS

CVE•added 2023/01/09 8:15 a.m.•58 views

CVE-2022-25717

Memory corruption in display due to double free while allocating frame buffer memory

7.8CVSS7.2AI score0.00034EPSS

CVE•added 2023/08/08 10:15 a.m.•58 views

CVE-2023-21643

Memory corruption due to untrusted pointer dereference in automotive during system call.

9.1CVSS8AI score0.00067EPSS

CVE•added 2023/10/03 6:15 a.m.•58 views

CVE-2023-22382

Weak configuration in Automotive while VM is processing a listener request from TEE.

8.2CVSS7.8AI score0.00026EPSS

CVE•added 2023/10/03 6:15 a.m.•58 views

CVE-2023-22385

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

9.8CVSS9.1AI score0.00126EPSS

CVE•added 2023/12/05 3:15 a.m.•58 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•58 views

CVE-2023-28558

Memory corruption in WLAN handler while processing PhyID in Tx status handler.

7.8CVSS7.9AI score0.0003EPSS

CVE•added 2024/01/02 6:15 a.m.•58 views

CVE-2023-28583

Memory corruption when IPv6 prefix timer object`s lifetime expires which are created while Netmgr daemon gets an IPv6 address.

7.8CVSS7.8AI score0.00041EPSS

CVE•added 2023/12/05 3:15 a.m.•58 views

CVE-2023-33041

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.

7.5CVSS7.5AI score0.00148EPSS

CVE•added 2024/02/06 6:16 a.m.•58 views

CVE-2023-33077

Memory corruption in HLOS while converting from authorization token to HIDL vector.

7.8CVSS7.7AI score0.0002EPSS

CVE•added 2024/08/05 3:15 p.m.•58 views

CVE-2024-33027

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.

8.4CVSS8.5AI score0.00029EPSS

CVE•added 2024/08/05 3:15 p.m.•58 views

CVE-2024-33034

Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.

8.4CVSS8.7AI score0.00035EPSS

CVE•added 2024/12/02 11:15 a.m.•58 views

CVE-2024-33036

Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.

6.7CVSS6.6AI score0.00016EPSS

CVE•added 2021/09/09 8:15 a.m.•57 views

CVE-2021-1963

Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.7CVSS6.7AI score0.00048EPSS

CVE•added 2021/11/12 7:15 a.m.•57 views

CVE-2021-1975

Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

10CVSS9.6AI score0.00325EPSS

CVE•added 2022/01/13 12:15 p.m.•57 views

CVE-2021-30287

Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.5CVSS7.6AI score0.00359EPSS

CVE•added 2022/01/03 8:15 a.m.•57 views

CVE-2021-30298

Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching between USB and PCIE interface in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired ...

7.8CVSS7.6AI score0.0004EPSS

CVE•added 2022/06/14 10:15 a.m.•57 views

CVE-2021-35072

Possible buffer overflow due to improper validation of array index while processing external DIAG command in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS8AI score0.00146EPSS

CVE•added 2022/09/02 12:15 p.m.•57 views

CVE-2022-22069

Devices with keyprotect off may store unencrypted keybox in RPMB and cause cryptographic issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.8CVSS7.7AI score0.0003EPSS

CVE•added 2022/10/19 11:15 a.m.•57 views

CVE-2022-25660

Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.8AI score0.00085EPSS

CVE•added 2022/12/13 4:15 p.m.•57 views

CVE-2022-25681

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.7AI score0.00079EPSS

Total number of security vulnerabilities961