Search Results (108 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-28571 1 Qualcomm 172 8098, 8098 Firmware, 8998 and 169 more 2025-08-11 6.1 Medium
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
CVE-2023-28587 1 Qualcomm 380 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 377 more 2025-08-11 7.8 High
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
CVE-2024-33048 1 Qualcomm 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more 2025-08-11 7.5 High
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2024-45541 1 Qualcomm 102 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 99 more 2025-08-11 7.8 High
Memory corruption when IOCTL call is invoked from user-space to read board data.
CVE-2024-45542 1 Qualcomm 102 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 99 more 2025-08-11 7.8 High
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
CVE-2024-33073 1 Qualcomm 320 Ar8035, Ar8035 Firmware, Csr8811 and 317 more 2025-08-11 8.2 High
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2024-33049 1 Qualcomm 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more 2025-08-11 7.5 High
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
CVE-2023-28539 1 Qualcomm 314 Ar8035, Ar8035 Firmware, Ar9380 and 311 more 2025-08-11 6.6 Medium
Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.
CVE-2023-43533 1 Qualcomm 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 473 more 2025-08-11 7.5 High
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.
CVE-2024-49839 1 Qualcomm 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more 2025-08-11 8.2 High
Memory corruption during management frame processing due to mismatch in T2LM info element.
CVE-2023-43552 1 Qualcomm 298 Ar8035, Ar8035 Firmware, Csr8811 and 295 more 2025-08-11 9.8 Critical
Memory corruption while processing MBSSID beacon containing several subelement IE.
CVE-2024-33050 1 Qualcomm 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more 2025-08-11 7.5 High
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2023-43522 1 Qualcomm 572 Aqt1000, Aqt1000 Firmware, Ar8035 and 569 more 2025-08-11 7.5 High
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
CVE-2024-33057 1 Qualcomm 356 Ar8035, Ar8035 Firmware, Csr8811 and 353 more 2025-08-11 7.5 High
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2023-33089 1 Qualcomm 456 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 453 more 2025-08-11 7.5 High
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
CVE-2023-33088 1 Qualcomm 612 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 609 more 2025-08-11 8.4 High
Memory corruption when processing cmd parameters while parsing vdev.
CVE-2024-53027 1 Qualcomm 424 205, 205 Firmware, Apq8017 and 421 more 2025-08-11 7.5 High
Transient DOS may occur while processing the country IE.
CVE-2023-33098 1 Qualcomm 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more 2025-08-11 7.5 High
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
CVE-2024-33051 1 Qualcomm 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more 2025-08-11 7.5 High
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-45558 1 Qualcomm 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more 2025-08-11 7.5 High
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.