Qcn9024 Firmware@- Security Vulnerabilities and Issues — Qcn9024 Firmware@- CVE List

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

7.8CVSS8AI score0.00017EPSS

CVE•added 2025/03/03 11:15 a.m.•67 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.00073EPSS

CVE•added 2025/02/03 5:15 p.m.•66 views

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2025/02/03 5:15 p.m.•65 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00053EPSS

CVE•added 2025/02/03 5:15 p.m.•65 views

CVE-2024-49839

Memory corruption during management frame processing due to mismatch in T2LM info element.

9.8CVSS8.4AI score0.00072EPSS

CVE•added 2025/05/06 9:15 a.m.•64 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2025/03/03 11:15 a.m.•63 views

CVE-2024-53024

Memory corruption in display driver while detaching a device.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•61 views

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

7.8CVSS7.4AI score0.00024EPSS

CVE•added 2025/03/03 11:15 a.m.•44 views

CVE-2024-38426

While processing the authentication message in UE, improper authentication may lead to information disclosure.

5.4CVSS6.9AI score0.00069EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00015EPSS

CVE•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43057

Memory corruption while processing command in Glink linux.

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

7.8CVSS6.6AI score0.0001EPSS

CVE•added 2025/07/08 1:15 p.m.•8 views

CVE-2025-21450

Cryptographic issue occurs due to use of insecure connection method while downloading.

9.1CVSS6.6AI score0.00031EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-21446

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

7.5CVSS6.4AI score0.00063EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-27042

Memory corruption while processing video packets received from video firmware.

7.8CVSS6.8AI score0.00013EPSS

CVE•added 2025/07/08 1:15 p.m.•6 views

CVE-2025-27057

Transient DOS while handling beacon frames with invalid IE header length.

7.5CVSS6.6AI score0.00048EPSS