Qualcomm: >> Wcn3988 Firmware Security Vulnerabilities
Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-01-06
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-01-06
Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.
CVSS Score
6.8
EPSS Score
0.0
Published
2025-01-06
Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-12-02
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-12-02
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-12-02
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-12-02
Memory corruption when invalid input is passed to invoke GPU Headroom API call.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-12-02
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.
CVSS Score
6.1
EPSS Score
0.0
Published
2024-12-02
Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-12-02