Qualcomm: >> Sdx55 Firmware Security Vulnerabilities
Memory corruption while processing concurrent IOCTL calls.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-09-02
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-09-02
Memory corruption when Alternative Frequency offset value is set to 255.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-09-02
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-02
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-08-05
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-08-05