Qualcomm Qca9531
54 CVEs affecting Qualcomm Qca9531. Latest disclosed: 2024-04-01. Critical: 10, High: 35.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-21473 | Critical | 9.8 | 2024-04-01 | Memory corruption while redirecting log file to any file location with any file name. |
CVE-2023-33083 | Critical | 9.8 | 2023-12-05 | Memory corruption in WLAN Host while processing RRM beacon on the AP. |
CVE-2023-33082 | Critical | 9.8 | 2023-12-05 | Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE. |
CVE-2021-1976 | Critical | 9.8 | 2021-09-17 | A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-1972 | Critical | 9.8 | 2021-09-08 | Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag… |
CVE-2020-11225 | Critical | 9.8 | 2021-01-21 | Out of bound access in WLAN driver due to lack of validation of array length before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Conne… |
CVE-2020-11172 | Critical | 9.8 | 2020-11-02 | u'fscanf reads a string from a file and stores its contents on a statically allocated stack memory which leads to stack overflow' in Snapdragon Wired Infrastru… |
CVE-2020-11117 | Critical | 9.8 | 2020-09-08 | u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code… |
CVE-2020-11301 | Critical | 9.1 | 2021-09-08 | Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Comput… |
CVE-2021-1924 | Critical | 9.0 | 2021-11-12 | Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connecti… |
CVE-2020-11269 | High | 8.8 | 2021-02-22 | Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdr… |
CVE-2023-21628 | High | 8.4 | 2023-06-06 | Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. |
CVE-2022-25655 | High | 8.4 | 2023-03-10 | Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. |
CVE-2021-1947 | High | 8.4 | 2021-09-17 | Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industr… |
CVE-2020-11267 | High | 8.4 | 2021-06-09 | Stack out-of-bounds write occurs while setting up a cipher device if the provided IV length exceeds the max limit value in Snapdragon Auto, Snapdragon Compute… |
CVE-2021-1927 | High | 8.4 | 2021-05-07 | Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2023-28565 | High | 7.8 | 2023-09-05 | Memory corruption in WLAN HAL while handling command streams through WMI interfaces. |
CVE-2023-28564 | High | 7.8 | 2023-09-05 | Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. |
CVE-2023-28560 | High | 7.8 | 2023-09-05 | Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. |
CVE-2021-30303 | High | 7.8 | 2022-01-03 | Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv… |