Qualcomm: >> Sa8540p Firmware Security Vulnerabilities
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Cryptographic issue while parsing RSA keys in COBR format.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-09-02
Memory corruption while releasing shared resources in MinkSocket listener thread.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
memory corruption when an invalid firehose patch command is invoked.
CVSS Score
6.8
EPSS Score
0.001
Published
2024-09-02
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05
Memory corruption while processing IOCTL call to set metainfo.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
CVSS Score
7.5
EPSS Score
0.005
Published
2024-08-05