Vulnerabilities > Qualcomm > Qcn9074 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-12 | CVE-2022-33279 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. | 9.8 |
| 2023-02-12 | CVE-2022-33280 | Access of Uninitialized Pointer vulnerability in Qualcomm products Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet. | 8.8 |
| 2023-02-12 | CVE-2022-33306 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs. | 7.5 |
| 2023-02-12 | CVE-2022-34145 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN Host while parsing frame information. | 7.5 |
| 2023-02-12 | CVE-2022-34146 | Improper Input Validation vulnerability in Qualcomm products Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation. | 7.5 |
| 2023-02-12 | CVE-2022-40502 | Improper Input Validation vulnerability in Qualcomm products Transient DOS due to improper input validation in WLAN Host. | 7.5 |
| 2023-02-12 | CVE-2022-40512 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. | 7.5 |
| 2023-02-12 | CVE-2022-40513 | Resource Exhaustion vulnerability in Qualcomm products Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state. | 7.5 |
| 2023-02-12 | CVE-2022-40514 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. | 9.8 |
| 2023-01-09 | CVE-2022-22088 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote | 8.8 |