Qualcomm: >> Qcn6112 Firmware Security Vulnerabilities
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
CVSS Score
7.5
EPSS Score
0.005
Published
2024-08-05
Transient DOS while parsing the received TID-to-link mapping action frame.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-08-05