Vulnerabilities > Qualcomm > Qcn9000 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-05 | CVE-2024-33015 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. | 7.5 |
| 2024-08-05 | CVE-2024-33018 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. | 7.5 |
| 2024-08-05 | CVE-2024-33019 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing the received TID-to-link mapping action frame. | 7.5 |
| 2024-08-05 | CVE-2024-33024 | Integer Overflow or Wraparound vulnerability in Qualcomm products Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. | 7.5 |
| 2024-08-05 | CVE-2024-33025 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. | 7.5 |
| 2024-08-05 | CVE-2024-33026 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. | 7.5 |
| 2024-07-01 | CVE-2024-21457 | Out-of-bounds Read vulnerability in Qualcomm products INformation disclosure while handling Multi-link IE in beacon frame. | 7.5 |
| 2024-07-01 | CVE-2024-21458 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while handling SA query action frame. | 7.5 |
| 2024-07-01 | CVE-2024-21462 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while loading the TA ELF file. | 5.5 |
| 2024-07-01 | CVE-2024-21466 | Integer Underflow (Wrap or Wraparound) vulnerability in Qualcomm products Information disclosure while parsing sub-IE length during new IE generation. | 7.5 |