Vulnerabilities > Qualcomm > Qca1062 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-06 | CVE-2024-45541 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when IOCTL call is invoked from user-space to read board data. | 7.8 |
| 2025-01-06 | CVE-2024-45542 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. | 7.8 |
| 2024-12-02 | CVE-2024-43050 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver. | 7.8 |
| 2024-11-04 | CVE-2024-38408 | Unspecified vulnerability in Qualcomm products Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | 9.1 |
| 2024-09-02 | CVE-2024-33051 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | 7.5 |
| 2024-01-02 | CVE-2023-43511 | Infinite Loop vulnerability in Qualcomm products Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | 7.5 |
| 2023-12-05 | CVE-2023-33080 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | 7.5 |
| 2023-12-05 | CVE-2023-33081 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast. | 7.5 |
| 2023-12-05 | CVE-2023-33088 | NULL Pointer Dereference vulnerability in Qualcomm products Memory corruption when processing cmd parameters while parsing vdev. | 7.8 |
| 2023-12-05 | CVE-2023-33089 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS when processing a NULL buffer while parsing WLAN vdev. | 7.5 |