Vulnerabilities > Qualcomm > Qca9992 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-02 | CVE-2024-33050 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | 7.5 |
| 2024-08-05 | CVE-2024-33014 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing ESP IE from beacon/probe response frame. | 7.5 |
| 2024-07-01 | CVE-2024-23368 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when allocating and accessing an entry in an SMEM partition. | 7.8 |
| 2024-02-06 | CVE-2023-43522 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | 7.5 |
| 2024-02-06 | CVE-2023-43536 | Unspecified vulnerability in Qualcomm products Transient DOS while parse fils IE with length equal to 1. | 7.5 |
| 2024-01-02 | CVE-2023-33062 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Firmware while parsing a BTM request. | 7.5 |
| 2024-01-02 | CVE-2023-33109 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host. | 7.5 |
| 2024-01-02 | CVE-2023-33116 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver. | 7.5 |
| 2024-01-02 | CVE-2023-43511 | Infinite Loop vulnerability in Qualcomm products Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | 7.5 |
| 2023-12-05 | CVE-2023-33063 | Use After Free vulnerability in Qualcomm products Memory corruption in DSP Services during a remote call from HLOS to DSP. | 7.8 |