Total
334 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-28577 | 1 Qualcomm | 62 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 59 more | 2024-04-12 | N/A | 7.8 HIGH |
| In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address. | |||||
| CVE-2023-33045 | 1 Qualcomm | 258 Ar8035, Ar8035 Firmware, Csr8811 and 255 more | 2024-04-12 | N/A | 9.8 CRITICAL |
| Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. | |||||
| CVE-2023-28537 | 1 Qualcomm | 366 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 363 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption while allocating memory in COmxApeDec module in Audio. | |||||
| CVE-2023-28557 | 1 Qualcomm | 556 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 553 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. | |||||
| CVE-2023-28560 | 1 Qualcomm | 534 8098, 8098 Firmware, 8998 and 531 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | |||||
| CVE-2023-28544 | 1 Qualcomm | 412 Aqt1000, Aqt1000 Firmware, Ar9380 and 409 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers. | |||||
| CVE-2023-28565 | 1 Qualcomm | 588 9205 Lte, 9205 Lte Firmware, Apq8017 and 585 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN HAL while handling command streams through WMI interfaces. | |||||
| CVE-2023-28553 | 1 Qualcomm | 288 Ar8035, Ar8035 Firmware, Ar9380 and 285 more | 2024-04-12 | N/A | 5.5 MEDIUM |
| Information Disclosure in WLAN Host when processing WMI event command. | |||||
| CVE-2023-28575 | 1 Qualcomm | 120 205, 205 Firmware, 215 and 117 more | 2024-04-12 | N/A | 7.8 HIGH |
| The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it. | |||||
| CVE-2023-33015 | 1 Qualcomm | 388 315 5g, 315 5g Firmware, Aqt1000 and 385 more | 2024-04-12 | N/A | 7.5 HIGH |
| Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. | |||||
| CVE-2023-33048 | 1 Qualcomm | 230 Ar8035, Ar8035 Firmware, Csr8811 and 227 more | 2024-04-12 | N/A | 7.5 HIGH |
| Transient DOS in WLAN Firmware while parsing t2lm buffers. | |||||
| CVE-2023-28549 | 1 Qualcomm | 450 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 447 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload. | |||||
| CVE-2023-22666 | 1 Qualcomm | 344 Apq8009, Apq8009 Firmware, Apq8017 and 341 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory Corruption in Audio while playing amrwbplus clips with modified content. | |||||
| CVE-2023-21649 | 1 Qualcomm | 130 Apq8096au, Apq8096au Firmware, Aqt1000 and 127 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN while running doDriverCmd for an unspecific command. | |||||
| CVE-2022-33231 | 1 Qualcomm | 438 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 435 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption due to double free in core while initializing the encryption key. | |||||
| CVE-2022-33306 | 1 Qualcomm | 262 Ar8035, Ar8035 Firmware, Ar9380 and 259 more | 2024-04-12 | N/A | 7.5 HIGH |
| Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs. | |||||
| CVE-2023-21659 | 1 Qualcomm | 540 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 537 more | 2024-04-12 | N/A | 7.5 HIGH |
| Transient DOS in WLAN Firmware while processing frames with missing header fields. | |||||
| CVE-2022-40530 | 1 Qualcomm | 378 Aqt1000, Aqt1000 Firmware, Ar8031 and 375 more | 2024-04-12 | N/A | 7.8 HIGH |
| Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. | |||||
| CVE-2022-33279 | 1 Qualcomm | 148 Ar9380, Ar9380 Firmware, Csr8811 and 145 more | 2024-04-12 | N/A | 9.8 CRITICAL |
| Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. | |||||
| CVE-2022-40525 | 1 Qualcomm | 62 Csr8811, Csr8811 Firmware, Ipq6000 and 59 more | 2024-04-12 | N/A | 5.5 MEDIUM |
| Information disclosure in Linux Networking Firmware due to unauthorized information leak during side channel analysis. | |||||