Qualcomm Qca2066_firmware
110 CVEs affecting Qualcomm Qca2066_firmware. Latest disclosed: 2026-06-01. Critical: 5, High: 96.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-33028 | Critical | 9.8 | 2023-10-03 | Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. |
CVE-2022-40514 | Critical | 9.8 | 2023-02-12 | Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
CVE-2022-25748 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-30321 | Critical | 9.8 | 2021-11-12 | Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CVE-2020-11264 | Critical | 9.1 | 2021-09-08 | Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdra… |
CVE-2023-33088 | High | 8.4 | 2023-12-05 | Memory corruption when processing cmd parameters while parsing vdev. |
CVE-2022-33275 | High | 8.4 | 2023-09-05 | Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. |
CVE-2022-40532 | High | 8.4 | 2023-04-13 | Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. |
CVE-2022-40531 | High | 8.4 | 2023-03-10 | Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. |
CVE-2022-40530 | High | 8.4 | 2023-03-10 | Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. |
CVE-2022-33277 | High | 8.4 | 2023-02-12 | Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
CVE-2022-33276 | High | 8.4 | 2023-01-09 | Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command. |
CVE-2021-30288 | High | 8.4 | 2021-10-20 | Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon… |
CVE-2021-30260 | High | 8.4 | 2021-09-17 | Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is rece… |
CVE-2021-1892 | High | 8.4 | 2021-04-07 | Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon… |
CVE-2024-38408 | High | 8.2 | 2024-11-04 | Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. |
CVE-2022-33271 | High | 8.2 | 2023-02-12 | Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
CVE-2022-33284 | High | 8.2 | 2023-01-09 | Information disclosure due to buffer over-read in WLAN while parsing BTM action frame. |
CVE-2022-33283 | High | 8.2 | 2023-01-09 | Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check. |
CVE-2022-33252 | High | 8.2 | 2023-01-09 | Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. |