Vulnerabilities > Qualcomm > Qca9888 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-01-02 CVE-2023-43511 Infinite Loop vulnerability in Qualcomm products
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
network
low complexity
qualcomm CWE-835
7.5
2023-12-05 CVE-2023-28550 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-33041 Reachable Assertion vulnerability in Qualcomm products
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.
network
low complexity
qualcomm CWE-617
7.5
2023-12-05 CVE-2023-33053 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption in Kernel while parsing metadata.
local
low complexity
qualcomm CWE-129
7.8
2023-12-05 CVE-2023-33063 Use After Free vulnerability in Qualcomm products
Memory corruption in DSP Services during a remote call from HLOS to DSP.
local
low complexity
qualcomm CWE-416
7.8
2023-12-05 CVE-2023-33080 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
network
low complexity
qualcomm CWE-125
7.5
2023-12-05 CVE-2023-33081 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
network
low complexity
qualcomm CWE-125
7.5
2023-12-05 CVE-2023-33088 NULL Pointer Dereference vulnerability in Qualcomm products
Memory corruption when processing cmd parameters while parsing vdev.
local
low complexity
qualcomm CWE-476
7.8
2023-12-05 CVE-2023-33089 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
network
low complexity
qualcomm CWE-476
7.5
2023-12-05 CVE-2023-33097 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while processing a FTMR frame.
network
low complexity
qualcomm CWE-125
7.5