Vulnerabilities > Qualcomm > Qcn5052 Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-08-05 | CVE-2024-33024 | Integer Overflow or Wraparound vulnerability in Qualcomm products Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. | 7.5 |
2024-08-05 | CVE-2024-33025 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. | 7.5 |
2024-08-05 | CVE-2024-33026 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. | 7.5 |
2024-07-01 | CVE-2024-21457 | Out-of-bounds Read vulnerability in Qualcomm products INformation disclosure while handling Multi-link IE in beacon frame. | 7.5 |
2024-07-01 | CVE-2024-21458 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while handling SA query action frame. | 7.5 |
2024-07-01 | CVE-2024-21462 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while loading the TA ELF file. | 5.5 |
2024-07-01 | CVE-2024-21482 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses the authentication of the kernel/rootfs image. | 7.8 |
2024-07-01 | CVE-2024-23368 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when allocating and accessing an entry in an SMEM partition. | 7.8 |
2024-02-06 | CVE-2023-43513 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | 7.8 |
2024-02-06 | CVE-2023-43522 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | 7.5 |