Vulnerabilities > Qualcomm > Qfw7114 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-04 CVE-2024-38408 Unspecified vulnerability in Qualcomm products
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
network
low complexity
qualcomm
critical
9.1
2024-07-01 CVE-2024-21456 Out-of-bounds Read vulnerability in Qualcomm products
Information Disclosure while parsing beacon frame in STA.
network
low complexity
qualcomm CWE-125
critical
9.1
2024-02-06 CVE-2023-43534 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point.
network
low complexity
qualcomm CWE-119
critical
9.8
2024-02-06 CVE-2023-43520 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.
network
low complexity
qualcomm CWE-787
critical
9.8
2024-02-06 CVE-2023-33058 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem while processing SIB5.
network
low complexity
qualcomm CWE-125
critical
9.1
2023-12-05 CVE-2023-33083 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in WLAN Host while processing RRM beacon on the AP.
network
low complexity
qualcomm CWE-120
critical
9.8
2023-12-05 CVE-2023-33082 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.
network
low complexity
qualcomm CWE-120
critical
9.8
2023-12-05 CVE-2023-33054 Improper Authentication vulnerability in Qualcomm products
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
network
low complexity
qualcomm CWE-287
critical
9.1
2023-11-07 CVE-2023-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
network
low complexity
qualcomm CWE-787
critical
9.8
2023-11-07 CVE-2023-22388 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
network
low complexity
qualcomm CWE-787
critical
9.8