Page 3 of 59 results (0.003 seconds)

CVSS: 7.8EPSS: 0%CPEs: 35EXPL: 0

Memory corruption when user provides data for FM HCI command control operations. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 7.5EPSS: 0%CPEs: 33EXPL: 0

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 7.5EPSS: 0%CPEs: 11EXPL: 0

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 8.4EPSS: 0%CPEs: 8EXPL: 0

Memory corruption when BTFM client sends new messages over Slimbus to ADSP. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-562: Return of Stack Variable Address •