Sdx65m Firmware Security Vulnerabilities and Issues — Sdx65m Firmware CVE List

Lucene search

QualcommSdx65m Firmware

85 matches found

cve•added 2025/02/03 5:15 p.m.•134 views

CVE-2024-45569

Memory corruption while parsing the ML IE due to invalid frame content.

9.8CVSS9.7AI score0.00105EPSS

cve•added 2023/11/07 6:15 a.m.•110 views

CVE-2023-28553

Information Disclosure in WLAN Host when processing WMI event command.

6.1CVSS5.5AI score0.00056EPSS

cve•added 2024/12/02 11:15 a.m.•110 views

CVE-2024-33063

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.

7.5CVSS7.6AI score0.00191EPSS

cve•added 2023/07/04 5:15 a.m.•105 views

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS7.7AI score0.00052EPSS

cve•added 2024/03/04 11:15 a.m.•104 views

CVE-2023-43553

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.

9.8CVSS9.8AI score0.00291EPSS

cve•added 2024/03/04 11:15 a.m.•103 views

CVE-2023-43552

Memory corruption while processing MBSSID beacon containing several subelement IE.

9.8CVSS9.8AI score0.00227EPSS

cve•added 2023/12/05 3:15 a.m.•102 views

CVE-2023-33053

Memory corruption in Kernel while parsing metadata.

8.4CVSS8.2AI score0.00128EPSS

cve•added 2025/01/06 11:15 a.m.•101 views

CVE-2024-45558

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

7.5CVSS7.5AI score0.00089EPSS

cve•added 2023/07/04 5:15 a.m.•97 views

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS7.8AI score0.0006EPSS

cve•added 2023/07/04 5:15 a.m.•95 views

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS7.6AI score0.00051EPSS

cve•added 2024/07/01 3:15 p.m.•94 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.

7.8CVSS7.9AI score0.00098EPSS

cve•added 2025/02/03 5:15 p.m.•92 views

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8CVSS7.9AI score0.00027EPSS

cve•added 2023/12/05 3:15 a.m.•90 views

CVE-2023-33082

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

9.8CVSS9.8AI score0.00195EPSS

cve•added 2025/02/03 5:15 p.m.•90 views

CVE-2024-49839

Memory corruption during management frame processing due to mismatch in T2LM info element.

9.8CVSS8.4AI score0.00081EPSS

cve•added 2024/09/02 12:15 p.m.•89 views

CVE-2024-33048

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

7.5CVSS7.6AI score0.00264EPSS

cve•added 2024/09/02 12:15 p.m.•87 views

CVE-2024-33050

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

7.5CVSS7.6AI score0.00264EPSS

cve•added 2024/10/07 1:15 p.m.•85 views

CVE-2024-33049

Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.

7.5CVSS7.6AI score0.00207EPSS

cve•added 2024/09/02 12:15 p.m.•85 views

CVE-2024-33057

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

7.5CVSS7.5AI score0.00264EPSS

cve•added 2023/10/03 6:15 a.m.•84 views

CVE-2023-33028

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

9.8CVSS9AI score0.00103EPSS

cve•added 2024/07/01 3:15 p.m.•78 views

CVE-2024-21458

Information disclosure while handling SA query action frame.

7.5CVSS6.6AI score0.00111EPSS

cve•added 2024/10/07 1:15 p.m.•76 views

CVE-2024-33066

Memory corruption while redirecting log file to any file location with any file name.

9.8CVSS9.8AI score0.00164EPSS

cve•added 2023/03/10 9:15 p.m.•75 views

CVE-2022-40530

Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.

8.4CVSS8.3AI score0.00046EPSS

cve•added 2023/10/03 6:15 a.m.•74 views

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

7.8CVSS7.2AI score0.00032EPSS

cve•added 2023/11/07 6:15 a.m.•74 views

CVE-2023-33045

Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.

9.8CVSS9.7AI score0.0021EPSS

cve•added 2024/02/06 6:16 a.m.•73 views

CVE-2023-33072

Memory corruption in Core while processing control functions.

9.3CVSS7.8AI score0.00029EPSS

cve•added 2023/03/10 9:15 p.m.•72 views

CVE-2022-40531

Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.

8.4CVSS8.1AI score0.0006EPSS

cve•added 2024/07/01 3:15 p.m.•71 views

CVE-2024-21457

INformation disclosure while handling Multi-link IE in beacon frame.

7.5CVSS6.6AI score0.00111EPSS

cve•added 2023/03/10 9:15 p.m.•70 views

CVE-2022-33309

Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.

7.5CVSS7.6AI score0.00134EPSS

cve•added 2023/10/03 6:15 a.m.•70 views

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS7.7AI score0.00194EPSS

cve•added 2024/08/05 3:15 p.m.•69 views

CVE-2024-33013

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.

7.5CVSS7.6AI score0.00189EPSS

cve•added 2024/08/05 3:15 p.m.•68 views

CVE-2024-33026

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.

7.5CVSS7.6AI score0.00244EPSS

cve•added 2023/03/10 9:15 p.m.•67 views

CVE-2022-40535

Transient DOS due to buffer over-read in WLAN while sending a packet to device.

7.5CVSS7.6AI score0.00104EPSS

cve•added 2024/01/02 6:15 a.m.•67 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

cve•added 2024/04/01 3:15 p.m.•67 views

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file name.

9.8CVSS9.7AI score0.00188EPSS

cve•added 2023/11/07 6:15 a.m.•66 views

CVE-2023-33056

Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

7.5CVSS7.6AI score0.00173EPSS

cve•added 2024/03/04 11:15 a.m.•66 views

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

7.5CVSS7.7AI score0.02377EPSS

cve•added 2023/12/05 3:15 a.m.•65 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS

cve•added 2023/10/03 6:15 a.m.•65 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

cve•added 2024/08/05 3:15 p.m.•64 views

CVE-2024-33012

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

7.5CVSS7.6AI score0.00244EPSS

cve•added 2024/08/05 3:15 p.m.•64 views

CVE-2024-33015

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

7.5CVSS7.6AI score0.00244EPSS

cve•added 2023/11/07 6:15 a.m.•63 views

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem image.

8.4CVSS7.8AI score0.00054EPSS

cve•added 2024/01/02 6:15 a.m.•63 views

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS7.6AI score0.00173EPSS

cve•added 2024/03/04 11:15 a.m.•63 views

CVE-2023-43549

Memory corruption while processing TPC target power table in FTM TPC.

8.4CVSS8.6AI score0.00124EPSS

cve•added 2023/12/05 3:15 a.m.•62 views

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS7.5AI score0.00147EPSS

cve•added 2024/01/02 6:15 a.m.•62 views

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

7.5CVSS7.5AI score0.00322EPSS

cve•added 2024/06/03 10:15 a.m.•62 views

CVE-2024-23363

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.

7.5CVSS7.6AI score0.00228EPSS

cve•added 2024/08/05 3:15 p.m.•62 views

CVE-2024-33010

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

7.5CVSS7.6AI score0.00244EPSS

cve•added 2024/08/05 3:15 p.m.•62 views

CVE-2024-33014

Transient DOS while parsing ESP IE from beacon/probe response frame.

7.5CVSS7.6AI score0.00244EPSS

cve•added 2024/08/05 3:15 p.m.•62 views

CVE-2024-33024

Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.

7.5CVSS7.6AI score0.00244EPSS

cve•added 2023/09/05 7:15 a.m.•61 views

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in log.

7.8CVSS8AI score0.00053EPSS

Total number of security vulnerabilities85