Vulnerabilities > Qualcomm > Qca6564Au Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-01 | CVE-2024-21456 | Out-of-bounds Read vulnerability in Qualcomm products Information Disclosure while parsing beacon frame in STA. | 9.1 |
| 2024-02-06 | CVE-2023-43534 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point. | 9.8 |
| 2024-02-06 | CVE-2023-43520 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. | 9.8 |
| 2023-11-07 | CVE-2023-33045 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. | 9.8 |
| 2023-11-07 | CVE-2023-22388 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Multi-mode Call Processor while processing bit mask API. | 9.8 |
| 2023-10-03 | CVE-2023-33028 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. | 9.8 |
| 2023-10-03 | CVE-2023-22385 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Data Modem while making a MO call or MT VOLTE call. | 9.8 |
| 2023-08-08 | CVE-2022-40510 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. | 9.8 |
| 2023-07-04 | CVE-2023-21631 | Unspecified vulnerability in Qualcomm products Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. | 9.8 |
| 2023-03-10 | CVE-2022-40537 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. | 9.8 |