Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.

Transient DOS when processing target power rate tables during channel configuration.

Information disclosure while registering commands from clients with diag through diagHal.

Transient DOS while processing power control requests with invalid antenna or stream values.

Transient DOS while handling command data during power control processing.

Transient DOS while processing a frame with malformed shared-key descriptor.

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmwar

Transient DOS while handling beacon frames with invalid IE header length.

Memory corruption while processing manipulated payload in video firmware.

Memory corruption while processing video packets received from video firmware.

Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.

Transient DOS while processing the EHT operation IE in the received beacon frame.