CVE-2023-43511

all versions

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the n

7.5HIGH

CVE-2023-28563

all versions

Information disclosure in IOE Firmware while handling WMI command.

6.1MEDIUM

CVE-2023-28565

all versions

Memory corruption in WLAN HAL while handling command streams through WMI interfaces.

7.8HIGH

CVE-2023-21628

all versions

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

8.4HIGH

CVE-2022-40512

all versions

Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.

7.5HIGH

CVE-2022-33286

all versions

Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.

7.5HIGH

CVE-2022-33238

all versions

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Sna

7.5HIGH

CVE-2022-25749

all versions

Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Sna

7.5HIGH

CVE-2022-25748

all versions

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Comp

9.8CRITICAL

CVE-2022-25718

all versions

Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Co

9.1CRITICAL

CVE-2021-30303

all versions

Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon

7.8HIGH

CVE-2021-30288

all versions

Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Sn

8.4HIGH

CVE-2020-11303

all versions

Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapd

8.6HIGH

CVE-2021-30260

all versions

Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist

8.4HIGH

CVE-2020-11241

all versions

Out of bound read will happen if EAPOL Key length is less than expected while processing NAN shared key descriptor attribute in Sn

7.5HIGH

CVE-2020-11235

all versions

Buffer overflow might occur while parsing unified command due to lack of check of input data received in Snapdragon Auto, Snapdrag

7.8HIGH

CVE-2020-11296

all versions

Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snap

7.5HIGH

CVE-2020-11276

all versions

Possible buffer over read while processing P2P IE and NOA attribute of beacon and probe response frames due to improper validation

9.1CRITICAL

CVE-2020-11275

all versions

Possible buffer over-read while parsing quiet IE in Rx beacon frame due to improper check of IE length in received beacon in Snapd

9.1CRITICAL

CVE-2020-11269

all versions

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Aut

8.8HIGH

CVE-2020-11119

all versions

Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdra

7.5HIGH