Qualcomm: >> Qca9367 Security Vulnerabilities
Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-10-07
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-10-07
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-09-02
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-09-02
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-08-05
Memory corruption while processing IOCTL call to set metainfo.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-08-05
Memory corruption while allocating memory in HGSL driver.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-08-05
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05