CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2024-33057 – Buffer Over-read in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-33057
02 Sep 2024 — Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 33EXPL: 0CVE-2024-33051 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-33051
02 Sep 2024 — Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2024-33050 – Buffer Over-read in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-33050
02 Sep 2024 — Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-33048 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2024-33048
02 Sep 2024 — Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2024-33043 – Buffer Over-read in FM Host
https://notcve.org/view.php?id=CVE-2024-33043
02 Sep 2024 — Transient DOS while handling PS event when Program Service name length offset value is set to 255. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-23364 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-23364
02 Sep 2024 — Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA). • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-23358 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23358
02 Sep 2024 — Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2024-20089
https://notcve.org/view.php?id=CVE-2024-20089
02 Sep 2024 — In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/September-2024 • CWE-703: Improper Check or Handling of Exceptional Conditions CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 1CVE-2024-44946 – kcm: Serialise kcm_sendmsg() for the same socket.
https://notcve.org/view.php?id=CVE-2024-44946
31 Aug 2024 — An attacker with access to the VMM could use this to cause a denial of service or possibly execute arbitrary code. • https://github.com/Abdurahmon3236/CVE-2024-44946 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0111
https://notcve.org/view.php?id=CVE-2024-0111
31 Aug 2024 — A successful exploit of this vulnerability may lead to a limited denial of service or data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5564 • CWE-1284: Improper Validation of Specified Quantity in Input •