Wcn3991 Firmware Security Vulnerabilities and Issues — Page 2 of Wcn3991 Firmware CVE List

Lucene search

QualcommWcn3991 Firmware

99 matches found

CVE•added 2023/06/06 8:15 a.m.•64 views

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the list.

8.4CVSS8.1AI score0.0301EPSS

CVE•added 2023/03/10 9:15 p.m.•63 views

CVE-2022-33245

Memory corruption in WLAN due to use after free

7.8CVSS7AI score0.00029EPSS

CVE•added 2023/03/10 9:15 p.m.•63 views

CVE-2022-33250

Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/03/10 9:15 p.m.•63 views

CVE-2022-33254

Transient DOS due to reachable assertion in Modem while processing SIB1 Message.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/03/10 9:15 p.m.•62 views

CVE-2022-25655

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

8.4CVSS8.2AI score0.00067EPSS

CVE•added 2023/03/10 9:15 p.m.•62 views

CVE-2022-33244

Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/06/06 8:15 a.m.•62 views

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

7.9CVSS8.1AI score0.00094EPSS

CVE•added 2023/03/10 9:15 p.m.•62 views

CVE-2022-33272

Transient DOS in modem due to reachable assertion.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/01/09 8:15 a.m.•62 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.

7.5CVSS6.7AI score0.00158EPSS

CVE•added 2023/08/08 10:15 a.m.•62 views

CVE-2023-21651

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

9.3CVSS8.1AI score0.00052EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1CVSS5.8AI score0.00071EPSS

CVE•added 2023/01/09 8:15 a.m.•61 views

CVE-2022-25746

Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.

8.1CVSS7.8AI score0.00042EPSS

CVE•added 2023/01/09 8:15 a.m.•61 views

CVE-2022-40516

Memory corruption in Core due to stack-based buffer overflow.

8.4CVSS8.1AI score0.04308EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-40523

Information disclosure in Kernel due to indirect branch misprediction.

7.1CVSS5.6AI score0.0004EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2022-40536

Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.

7.5CVSS7.6AI score0.00108EPSS

CVE•added 2023/06/06 8:15 a.m.•61 views

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header fields.

7.5CVSS7.5AI score0.00122EPSS

CVE•added 2023/08/08 10:15 a.m.•61 views

CVE-2023-22666

Memory Corruption in Audio while playing amrwbplus clips with modified content.

8.4CVSS7.9AI score0.00053EPSS

CVE•added 2023/10/03 6:15 a.m.•61 views

CVE-2023-28540

Cryptographic issue in Data Modem due to improper authentication during TLS handshake.

9.1CVSS7.8AI score0.00067EPSS

CVE•added 2023/03/10 9:15 p.m.•60 views

CVE-2022-25694

Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM

8.4CVSS8AI score0.00067EPSS

CVE•added 2023/06/06 8:15 a.m.•60 views

CVE-2022-33224

Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl queries.

7.8CVSS7.2AI score0.00036EPSS

CVE•added 2023/06/06 8:15 a.m.•60 views

CVE-2022-33307

Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.

8.4CVSS8AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•60 views

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in log.

7.8CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•60 views

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2023/06/06 8:15 a.m.•59 views

CVE-2022-33263

Memory corruption due to use after free in Core when multiple DCI clients register and deregister.

7.8CVSS7.3AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•59 views

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in log.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8CVSS7.9AI score0.00062EPSS

CVE•added 2023/12/05 3:15 a.m.•58 views

CVE-2023-33054

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.

9.1CVSS9.3AI score0.0013EPSS

CVE•added 2023/06/06 8:15 a.m.•57 views

CVE-2022-40522

Memory corruption in Linux Networking due to double free while handling a hyp-assign.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•57 views

CVE-2023-28560

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

7.8CVSS7.9AI score0.00024EPSS

CVE•added 2023/06/06 8:15 a.m.•56 views

CVE-2022-22060

Assertion occurs while processing Reconfiguration message due to improper validation

7.5CVSS7.5AI score0.00107EPSS

CVE•added 2023/06/06 8:15 a.m.•56 views

CVE-2022-33251

Transient DOS due to reachable assertion in Modem because of invalid network configuration.

7.5CVSS7.5AI score0.00145EPSS

CVE•added 2023/09/05 7:15 a.m.•55 views

CVE-2023-21646

Transient DOS in Modem while processing invalid System Information Block 1.

7.5CVSS7.5AI score0.00087EPSS

CVE•added 2023/12/05 3:15 a.m.•55 views

CVE-2023-33070

Transient DOS in Automotive OS due to improper authentication to the secure IO calls.

7.1CVSS5.8AI score0.00054EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-33284

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/06/06 8:15 a.m.•54 views

CVE-2022-40533

Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.

6.2CVSS5.7AI score0.00044EPSS

CVE•added 2023/06/06 8:15 a.m.•53 views

CVE-2022-33226

Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications.

7.8CVSS7.3AI score0.00036EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-40518

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in Core

8.4CVSS8.3AI score0.04308EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2022-33230

Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/06/06 8:15 a.m.•52 views

CVE-2022-33267

Memory corruption in Linux while sending DRM request.

7.8CVSS7AI score0.00034EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33024

Memory corruption while sending SMS from AP firmware.

7.8CVSS7.2AI score0.0004EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33042

Transient DOS in Modem after RRC Setup message is received.

7.5CVSS7.6AI score0.00187EPSS

CVE•added 2023/09/05 7:15 a.m.•49 views

CVE-2023-21644

Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.

7.8CVSS7AI score0.0002EPSS

CVE•added 2023/01/09 8:15 a.m.•48 views

CVE-2022-40519

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/12/05 3:15 a.m.•47 views

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•46 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2023/01/09 8:15 a.m.•44 views

CVE-2022-33286

Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.

7.5CVSS6.7AI score0.00123EPSS

CVE•added 2023/01/09 8:15 a.m.•38 views

CVE-2022-40517

Memory corruption in core due to stack-based buffer overflow

8.4CVSS8.3AI score0.00091EPSS

Total number of security vulnerabilities99