Qca9985 Firmware Security Vulnerabilities and Issues — Page 2 of Qca9985 Firmware CVE List

Lucene search

QualcommQca9985 Firmware

111 matches found

CVE•added 2023/10/03 6:15 a.m.•68 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2021/09/09 8:15 a.m.•67 views

CVE-2021-1948

Possible out of bound read due to lack of length check of data while parsing the beacon or probe response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon ...

7.8CVSS7.5AI score0.00479EPSS

CVE•added 2022/06/14 10:15 a.m.•66 views

CVE-2021-35071

Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastruc...

5.5CVSS5.7AI score0.00109EPSS

CVE•added 2023/02/12 4:15 a.m.•66 views

CVE-2022-33277

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2024/01/02 6:15 a.m.•66 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2024/04/01 3:15 p.m.•66 views

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file name.

9.8CVSS9.7AI score0.00139EPSS

CVE•added 2023/01/09 8:15 a.m.•64 views

CVE-2022-33283

Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2023-21658

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/03/04 11:15 a.m.•64 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00111EPSS

CVE•added 2023/10/03 6:15 a.m.•64 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2024/03/04 11:15 a.m.•64 views

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

7.5CVSS7.7AI score0.02377EPSS

CVE•added 2023/06/06 8:15 a.m.•63 views

CVE-2023-21661

Transient DOS while parsing WLAN beacon or probe-response frame.

7.5CVSS7.6AI score0.00158EPSS

CVE•added 2023/03/10 9:15 p.m.•62 views

CVE-2022-25655

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

8.4CVSS8.2AI score0.00067EPSS

CVE•added 2023/01/09 8:15 a.m.•62 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

7.5CVSS6.7AI score0.00158EPSS

CVE•added 2024/01/02 6:15 a.m.•62 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-28567

Memory corruption in WLAN HAL while handling command through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2024/01/02 6:15 a.m.•61 views

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

7.5CVSS7.5AI score0.00322EPSS

CVE•added 2023/10/03 6:15 a.m.•59 views

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS7.2AI score0.00032EPSS

CVE•added 2023/09/05 7:15 a.m.•59 views

CVE-2023-28564

Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.

7.8CVSS8AI score0.0003EPSS

CVE•added 2024/01/02 6:15 a.m.•59 views

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2022/12/13 4:15 p.m.•57 views

CVE-2022-25677

Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

7.8CVSS8AI score0.00032EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28549

Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.

7.8CVSS8AI score0.00027EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28560

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2021/11/12 7:15 a.m.•56 views

CVE-2021-1924

Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & M...

9CVSS7.4AI score0.00045EPSS

CVE•added 2023/01/09 8:15 a.m.•56 views

CVE-2022-25722

Information exposure in DSP services due to improper handling of freeing memory

6CVSS5.5AI score0.00031EPSS

CVE•added 2023/09/05 7:15 a.m.•56 views

CVE-2023-28565

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/11/07 6:15 a.m.•56 views

CVE-2023-33047

Transient DOS in WLAN Firmware while parsing no-inherit IES.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2023/12/05 3:15 a.m.•56 views

CVE-2023-33083

Memory corruption in WLAN Host while processing RRM beacon on the AP.

9.8CVSS9.8AI score0.002EPSS

CVE•added 2023/12/05 3:15 a.m.•56 views

CVE-2023-33098

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

7.5CVSS7.6AI score0.00188EPSS

CVE•added 2024/02/06 6:16 a.m.•56 views

CVE-2023-43522

Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.

7.5CVSS7.5AI score0.00145EPSS

CVE•added 2022/10/19 11:15 a.m.•55 views

CVE-2022-25666

Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

6.7CVSS7AI score0.0004EPSS

CVE•added 2023/09/05 7:15 a.m.•55 views

CVE-2023-28557

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.

7.8CVSS7.9AI score0.00045EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-33284

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28559

Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•54 views

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS8.1AI score0.00068EPSS

CVE•added 2022/12/13 4:15 p.m.•53 views

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

7.5CVSS7.6AI score0.00145EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-33253

Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.

7.5CVSS5.9AI score0.00112EPSS

CVE•added 2023/09/05 7:15 a.m.•53 views

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command parameters.

7.8CVSS8AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•53 views

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2023/01/09 8:15 a.m.•52 views

CVE-2022-33252

Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.

8.2CVSS6AI score0.00063EPSS

CVE•added 2023/01/09 8:15 a.m.•52 views

CVE-2022-33276

Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•51 views

CVE-2023-28548

Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.

7.8CVSS8AI score0.00024EPSS

CVE•added 2022/11/15 10:15 a.m.•50 views

CVE-2022-25667

Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking

7.5CVSS7.4AI score0.00196EPSS

CVE•added 2021/05/07 9:15 a.m.•49 views

CVE-2021-1915

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, ...

7.8CVSS7.7AI score0.00035EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/08/05 3:15 p.m.•49 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2023/12/05 3:15 a.m.•48 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.