Vulnerabilities > Qualcomm > Qca6391 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-33065 Unspecified vulnerability in Qualcomm products
Memory corruption while taking snapshot when an offset variable is set by camera driver.
local
low complexity
qualcomm
7.8
2024-10-07 CVE-2024-33069 Use After Free vulnerability in Qualcomm products
Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.
network
low complexity
qualcomm CWE-416
7.5
2024-10-07 CVE-2024-33073 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
network
low complexity
qualcomm CWE-125
8.2
2024-10-07 CVE-2024-38397 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing probe response and assoc response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-43047 Use After Free vulnerability in Qualcomm products
Memory corruption while maintaining memory maps of HLOS memory.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-33042 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when Alternative Frequency offset value is set to 255.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33048 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5