Vulnerabilities > Qualcomm > Ipq8074 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-12-02 CVE-2024-33056 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
local
low complexity
qualcomm CWE-125
7.8
2024-01-02 CVE-2023-43511 Infinite Loop vulnerability in Qualcomm products
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
network
low complexity
qualcomm CWE-835
7.5
2023-12-05 CVE-2023-33080 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
network
low complexity
qualcomm CWE-125
7.5
2023-11-07 CVE-2023-28563 Unspecified vulnerability in Qualcomm products
Information disclosure in IOE Firmware while handling WMI command.
local
low complexity
qualcomm
5.5
2023-11-07 CVE-2023-28569 Unspecified vulnerability in Qualcomm products
Information disclosure in WLAN HAL while handling command through WMI interfaces.
local
low complexity
qualcomm
5.5
2023-10-03 CVE-2023-33027 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while parsing rsn ies.
network
low complexity
qualcomm CWE-125
7.5
2023-09-05 CVE-2022-33275 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
local
low complexity
qualcomm CWE-129
7.8
2023-09-05 CVE-2023-28544 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.
local
low complexity
qualcomm CWE-120
7.8
2023-09-05 CVE-2023-28549 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
local
low complexity
qualcomm CWE-119
7.8
2023-09-05 CVE-2023-28557 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
local
low complexity
qualcomm CWE-129
7.8