threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qualcomm qcn9160 firmware
Product
qualcomm qcn9160 firmware
38 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-47401
all versions
Transient DOS when processing target power rate tables during channel configuration.
6.5
MEDIUM
CVE-2025-47331
all versions
Information disclosure while processing a firmware event.
6.1
MEDIUM
CVE-2025-27064
all versions
Information disclosure while registering commands from clients with diag through diagHal.
6.1
MEDIUM
CVE-2025-47328
all versions
Transient DOS while processing power control requests with invalid antenna or stream values.
7.5
HIGH
CVE-2025-47326
all versions
Transient DOS while handling command data during power control processing.
7.5
HIGH
CVE-2025-27065
all versions
Transient DOS while processing a frame with malformed shared-key descriptor.
7.5
HIGH
CVE-2025-21465
all versions
Information disclosure while processing the hash segment in an MBN file.
6.5
MEDIUM
CVE-2025-21464
all versions
Information disclosure while reading data from an image using specified offset and size parameters.
6.5
MEDIUM
CVE-2025-27057
all versions
Transient DOS while handling beacon frames with invalid IE header length.
7.5
HIGH
CVE-2025-27029
all versions
Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.
7.5
HIGH
CVE-2025-21463
all versions
Transient DOS while processing the EHT operation IE in the received beacon frame.
7.5
HIGH
CVE-2025-21435
all versions
Transient DOS may occur while parsing extended IE in beacon.
7.5
HIGH
CVE-2024-45556
all versions
Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.
6.5
MEDIUM
CVE-2024-43046
all versions
There may be information disclosure during memory re-allocation in TZ Secure OS.
5.5
MEDIUM
CVE-2024-43057
all versions
Memory corruption while processing command in Glink linux.
7.8
HIGH
CVE-2024-49839
all versions
Memory corruption during management frame processing due to mismatch in T2LM info element.
8.2
HIGH
CVE-2024-45571
all versions
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.
7.8
HIGH
CVE-2024-45569
all versions
Memory corruption while parsing the ML IE due to invalid frame content.
9.8
CRITICAL
CVE-2024-45558
all versions
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the
7.5
HIGH
CVE-2024-33056
all versions
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
8.4
HIGH
CVE-2024-33066
all versions
Memory corruption while redirecting log file to any file location with any file name.
9.8
CRITICAL
CVE-2024-33049
all versions
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
7.5
HIGH
CVE-2024-33057
all versions
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating t
7.5
HIGH
CVE-2024-33050
all versions
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improp
7.5
HIGH
CVE-2024-33048
all versions
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
7.5
HIGH
CVE-2024-33016
all versions
memory corruption when an invalid firehose patch command is invoked.
6.8
MEDIUM
CVE-2024-23364
all versions
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of
7.5
HIGH
CVE-2024-33026
all versions
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
7.5
HIGH
CVE-2024-33025
all versions
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
7.5
HIGH
CVE-2024-33024
all versions
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE lengt
7.5
HIGH
CVE-2024-33019
all versions
Transient DOS while parsing the received TID-to-link mapping action frame.
7.5
HIGH
CVE-2024-33018
all versions
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
7.5
HIGH
CVE-2024-33015
all versions
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than nei
7.5
HIGH
CVE-2024-33014
all versions
Transient DOS while parsing ESP IE from beacon/probe response frame.
7.5
HIGH
CVE-2024-33013
all versions
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
7.5
HIGH
CVE-2024-33012
all versions
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
7.5
HIGH
CVE-2024-33011
all versions
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
7.5
HIGH
CVE-2024-33010
all versions
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
7.5
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin