Qualcomm: >> Wsa8840 Firmware Security Vulnerabilities
Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-11-04
Memory corruption while processing IOCTL calls to unmap the buffers.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-11-04
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-11-04
Transient DOS while parsing BTM ML IE when per STA profile is not included.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-11-04
Transient DOS while processing the CU information from RNR IE.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-11-04
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-11-04
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-11-04
Transient DOS while parsing probe response and assoc response frame.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-10-07
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVSS Score
8.2
EPSS Score
0.001
Published
2024-10-07
Memory corruption while taking snapshot when an offset variable is set by camera driver.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-10-07