Qualcomm: >> Qca9367 Security Vulnerabilities
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.
CVSS Score
6.7
EPSS Score
0.001
Published
2024-10-07
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
CVSS Score
8.2
EPSS Score
0.003
Published
2024-09-02
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Memory corruption while processing IOCTL call to set metainfo.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Memory corruption while allocating memory in HGSL driver.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-08-05
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-08-05