Vulnerabilities > Qualcomm > Qcc2076 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-33051 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33057 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
network
low complexity
qualcomm CWE-125
7.5
2024-07-01 CVE-2024-21456 Out-of-bounds Read vulnerability in Qualcomm products
Information Disclosure while parsing beacon frame in STA.
network
low complexity
qualcomm CWE-125
critical
9.1
2024-07-01 CVE-2024-21457 Out-of-bounds Read vulnerability in Qualcomm products
INformation disclosure while handling Multi-link IE in beacon frame.
network
low complexity
qualcomm CWE-125
7.5
2024-07-01 CVE-2024-21458 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while handling SA query action frame.
network
low complexity
qualcomm CWE-125
7.5
2024-07-01 CVE-2024-21466 Integer Underflow (Wrap or Wraparound) vulnerability in Qualcomm products
Information disclosure while parsing sub-IE length during new IE generation.
network
low complexity
qualcomm CWE-191
7.5
2024-02-06 CVE-2023-43520 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.
network
low complexity
qualcomm CWE-787
critical
9.8
2024-02-06 CVE-2023-43534 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point.
network
low complexity
qualcomm CWE-119
critical
9.8
2024-01-02 CVE-2023-43511 Infinite Loop vulnerability in Qualcomm products
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
network
low complexity
qualcomm CWE-835
7.5
2023-12-05 CVE-2023-28587 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
local
low complexity
qualcomm CWE-787
7.8