) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2024-43052 |
Memory corruption while processing API calls to NPU with invalid input. Published: December 02, 2024; 6:15:09 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33056 |
Memory corruption when allocating and accessing an entry in an SMEM partition continuously. Published: December 02, 2024; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33053 |
Memory corruption when multiple threads try to unregister the CVP buffer at the same time. Published: December 02, 2024; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 6.7 MEDIUM V2.0:(not available) |
| CVE-2024-33044 |
Memory corruption while Configuring the SMR/S2CR register in Bypass mode. Published: December 02, 2024; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33040 |
Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access. Published: December 02, 2024; 6:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.0 HIGH V2.0:(not available) |
| CVE-2024-33037 |
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware. Published: December 02, 2024; 6:15:07 AM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |
| CVE-2024-33036 |
Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. Published: December 02, 2024; 6:15:06 AM -0500 |
V4.0:(not available) V3.1: 6.7 MEDIUM V2.0:(not available) |
| CVE-2021-30299 |
Possible out of bound access in audio module due to lack of validation of user provided input. Published: November 22, 2024; 5:15:04 AM -0500 |
V4.0:(not available) V3.1: 6.7 MEDIUM V2.0:(not available) |
| CVE-2024-38423 |
Memory corruption while processing GPU page table switch. Published: November 04, 2024; 5:15:09 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-38422 |
Memory corruption while processing voice packet with arbitrary data received from ADSP. Published: November 04, 2024; 5:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-38415 |
Memory corruption while handling session errors from firmware. Published: November 04, 2024; 5:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-38408 |
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. Published: November 04, 2024; 5:15:07 AM -0500 |
V4.0:(not available) V3.1: 9.1 CRITICAL V2.0:(not available) |
| CVE-2024-33032 |
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it. Published: November 04, 2024; 5:15:05 AM -0500 |
V4.0:(not available) V3.1: 6.7 MEDIUM V2.0:(not available) |
| CVE-2024-43047 |
Memory corruption while maintaining memory maps of HLOS memory. Published: October 07, 2024; 9:15:15 AM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33069 |
Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host. Published: October 07, 2024; 9:15:13 AM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2024-23369 |
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. Published: October 07, 2024; 9:15:10 AM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33060 |
Memory corruption when two threads try to map and unmap a single node simultaneously. Published: September 02, 2024; 8:15:18 AM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33052 |
Memory corruption when user provides data for FM HCI command control operations. Published: September 02, 2024; 8:15:18 AM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2024-33051 |
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. Published: September 02, 2024; 8:15:17 AM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2024-33048 |
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. Published: September 02, 2024; 8:15:17 AM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |