CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-33048 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2024-33048
02 Sep 2024 — Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2024-33043 – Buffer Over-read in FM Host
https://notcve.org/view.php?id=CVE-2024-33043
02 Sep 2024 — Transient DOS while handling PS event when Program Service name length offset value is set to 255. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-23364 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-23364
02 Sep 2024 — Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA). • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-23358 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23358
02 Sep 2024 — Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2024-20089
https://notcve.org/view.php?id=CVE-2024-20089
02 Sep 2024 — In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/September-2024 • CWE-703: Improper Check or Handling of Exceptional Conditions CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 1CVE-2024-44946 – kcm: Serialise kcm_sendmsg() for the same socket.
https://notcve.org/view.php?id=CVE-2024-44946
31 Aug 2024 — An attacker with access to the VMM could use this to cause a denial of service or possibly execute arbitrary code. • https://github.com/Abdurahmon3236/CVE-2024-44946 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0111
https://notcve.org/view.php?id=CVE-2024-0111
31 Aug 2024 — A successful exploit of this vulnerability may lead to a limited denial of service or data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5564 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0110
https://notcve.org/view.php?id=CVE-2024-0110
31 Aug 2024 — A successful exploit of this vulnerability may lead to code execution or denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5564 • CWE-787: Out-of-bounds Write •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0109
https://notcve.org/view.php?id=CVE-2024-0109
31 Aug 2024 — A successful exploit of this vulnerability may cause an out of bounds read in the unprivileged process memory which could lead to a limited denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5564 • CWE-125: Out-of-bounds Read •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-39578
https://notcve.org/view.php?id=CVE-2024-39578
31 Aug 2024 — A local high privileged attacker could potentially exploit this vulnerability, leading to denial of service, information tampering. • https://www.dell.com/support/kbdoc/en-us/000228207/dsa-2024-346-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities • CWE-61: UNIX Symbolic Link (Symlink) Following •