Vulnerabilities > Qualcomm > Qcn9012 Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-03 | CVE-2024-49839 | Out-of-bounds Read vulnerability in Qualcomm products Memory corruption during management frame processing due to mismatch in T2LM info element. | 9.8 |
| 2025-02-03 | CVE-2024-45569 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while parsing the ML IE due to invalid frame content. | 9.8 |
| 2024-11-04 | CVE-2024-38408 | Unspecified vulnerability in Qualcomm products Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | 9.1 |
| 2023-12-05 | CVE-2023-33083 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in WLAN Host while processing RRM beacon on the AP. | 9.8 |
| 2023-12-05 | CVE-2023-33082 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE. | 9.8 |
| 2023-11-07 | CVE-2023-33045 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. | 9.8 |
| 2023-10-03 | CVE-2023-33028 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. | 9.8 |
| 2023-08-08 | CVE-2022-40510 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. | 9.8 |
| 2023-03-10 | CVE-2022-40537 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. | 9.8 |
| 2023-02-12 | CVE-2022-40514 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. | 9.8 |