Wcn3988 Firmware Security Vulnerabilities and Issues — Wcn3988 Firmware CVE List

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

7.8CVSS8AI score0.00022EPSS

cve•added 2025/02/03 5:15 p.m.•99 views

CVE-2024-49843

Memory corruption while processing IOCTL from user space to handle GPU AHB bus error.

7.8CVSS7.8AI score0.00027EPSS

cve•added 2025/03/03 11:15 a.m.•95 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.0008EPSS

cve•added 2025/02/03 5:15 p.m.•94 views

CVE-2024-49833

Memory corruption can occur in the camera when an invalid CID is used.

7.8CVSS7.9AI score0.00027EPSS

cve•added 2025/02/03 5:15 p.m.•93 views

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8CVSS7.9AI score0.00027EPSS

cve•added 2025/02/03 5:15 p.m.•91 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00067EPSS

cve•added 2025/05/06 9:15 a.m.•91 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

7.8CVSS7.9AI score0.00022EPSS

cve•added 2025/03/03 11:15 a.m.•90 views

CVE-2024-53024

Memory corruption in display driver while detaching a device.

7.8CVSS7.4AI score0.00024EPSS

cve•added 2025/03/03 11:15 a.m.•89 views

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

7.8CVSS7.4AI score0.00024EPSS

cve•added 2025/01/06 11:15 a.m.•88 views

CVE-2024-45553

Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.

7.8CVSS7.9AI score0.00028EPSS

cve•added 2025/06/03 6:15 a.m.•82 views

CVE-2025-21486

Memory corruption during dynamic process creation call when client is only passing address and length of shell binary.

7.8CVSS7.9AI score0.00017EPSS

cve•added 2025/06/03 6:15 a.m.•62 views

CVE-2024-53016

Memory corruption while processing I2C settings in Camera driver.

6.6CVSS6.7AI score0.00015EPSS

cve•added 2025/05/06 9:15 a.m.•61 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00022EPSS

cve•added 2025/05/06 9:15 a.m.•53 views

CVE-2024-49845

Memory corruption during the FRS UDS generation process.

7.8CVSS7.9AI score0.00033EPSS

cve•added 2025/05/06 9:15 a.m.•51 views

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

7.8CVSS6.7AI score0.00022EPSS

cve•added 2025/06/03 6:15 a.m.•51 views

CVE-2024-53018

Memory corruption may occur while processing the OIS packet parser.

6.6CVSS6.7AI score0.00015EPSS

cve•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

7.8CVSS7.8AI score0.00022EPSS

cve•added 2025/05/06 9:15 a.m.•49 views

CVE-2024-45576

Memory corruption while prociesing command buffer buffer in OPE module.

7.8CVSS8.1AI score0.00022EPSS

cve•added 2025/03/03 11:15 a.m.•47 views

CVE-2024-38426

While processing the authentication message in UE, improper authentication may lead to information disclosure.

5.4CVSS6.9AI score0.00049EPSS

cve•added 2025/05/06 9:15 a.m.•47 views

CVE-2024-45554

Memory corruption during concurrent SSR execution due to race condition on the global maps list.

7.8CVSS7.9AI score0.00019EPSS

cve•added 2025/05/06 9:15 a.m.•47 views

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

7.8CVSS6.7AI score0.00022EPSS

cve•added 2025/03/03 11:15 a.m.•46 views

CVE-2024-53023

Memory corruption may occur while accessing a variable during extended back to back tests.

7.8CVSS7.3AI score0.00024EPSS

cve•added 2025/01/06 11:15 a.m.•45 views

CVE-2024-33061

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

6.8CVSS6.6AI score0.00023EPSS

cve•added 2025/02/03 5:15 p.m.•44 views

CVE-2024-45584

Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.

7.8CVSS7.9AI score0.00027EPSS

cve•added 2025/02/03 5:15 p.m.•43 views

CVE-2024-38417

Information disclosure while processing IO control commands.

6.1CVSS6.3AI score0.00021EPSS

cve•added 2025/02/03 5:15 p.m.•43 views

CVE-2024-38418

Memory corruption while parsing the memory map info in IOCTL calls.

7.8CVSS7.9AI score0.00016EPSS

cve•added 2025/03/03 11:15 a.m.•43 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00014EPSS

cve•added 2025/03/03 11:15 a.m.•42 views

CVE-2024-43057

Memory corruption while processing command in Glink linux.

7.8CVSS7.5AI score0.00024EPSS

cve•added 2025/02/03 5:15 p.m.•41 views

CVE-2024-38414

Information disclosure while processing information on firmware image during core initialization.

6.1CVSS6.2AI score0.00021EPSS

cve•added 2025/03/03 11:15 a.m.•39 views

CVE-2024-43056

Transient DOS during hypervisor virtual I/O operation in a virtual machine.

6.5CVSS7.1AI score0.0002EPSS

cve•added 2025/06/03 6:15 a.m.•36 views

CVE-2024-53019

Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.

8.2CVSS8.2AI score0.00049EPSS

cve•added 2025/04/07 11:15 a.m.•34 views

CVE-2024-43067

Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.

7.8CVSS7.1AI score0.00011EPSS

cve•added 2025/04/07 11:15 a.m.•29 views

CVE-2024-45557

Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation.

7.8CVSS7.3AI score0.00014EPSS

cve•added 2025/07/08 1:15 p.m.•20 views

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

7.8CVSS6.8AI score0.00015EPSS

cve•added 2025/07/08 1:15 p.m.•19 views

CVE-2025-27042

Memory corruption while processing video packets received from video firmware.

7.8CVSS6.8AI score0.00015EPSS

cve•added 2025/07/08 1:15 p.m.•19 views

CVE-2025-27043

Memory corruption while processing manipulated payload in video firmware.

7.8CVSS6.8AI score0.00015EPSS

cve•added 2025/07/08 1:15 p.m.•14 views

CVE-2025-21450

Cryptographic issue occurs due to use of insecure connection method while downloading.

9.1CVSS6.6AI score0.00034EPSS

cve•added 2025/07/08 1:15 p.m.•12 views

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

7.8CVSS6.6AI score0.00012EPSS

cve•added 2025/07/08 1:15 p.m.•12 views

CVE-2025-27052

Memory corruption while processing data packets in diag received from Unix clients.

7.8CVSS6.8AI score0.00015EPSS

cve•added 2025/07/08 1:15 p.m.•11 views

CVE-2024-53009

Memory corruption while operating the mailbox in Automotive.

7.8CVSS6.8AI score0.00014EPSS

cve•added 2025/07/08 1:15 p.m.•11 views

CVE-2025-21427

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

8.2CVSS6.5AI score0.00047EPSS

cve•added 2025/07/08 1:15 p.m.•11 views

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

7.8CVSS6.8AI score0.00015EPSS

cve•added 2025/07/08 1:15 p.m.•11 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00015EPSS

cve•added 2025/08/06 8:15 a.m.•8 views

CVE-2025-21455

Memory corruption while submitting blob data to kernel space though IOCTL.

7.8CVSS6.7AI score0.00013EPSS

Total number of security vulnerabilities56