Qualcomm: >> Qca9367 Firmware Security Vulnerabilities
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-10-07
Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-10-07
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-10-07
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
CVSS Score
8.2
EPSS Score
0.001
Published
2024-09-02
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05
Memory corruption while processing IOCTL call to set metainfo.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05
Memory corruption while allocating memory in HGSL driver.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05