📦 Qca6438 Firmware

This vulnerability allows memory corruption when redirecting log files to arbitrary locations with arbitrary filenames in Qualcomm components. It affects devices using Qualcomm chipsets and software. ...

This vulnerability allows remote attackers to execute arbitrary code on affected Qualcomm Snapdragon devices by exploiting a buffer overflow in the FLAC audio header parser. Attackers can trigger this...

CVE-2021-30351 is a critical buffer overflow vulnerability in Qualcomm Snapdragon chipsets, allowing attackers to execute arbitrary code or cause denial of service by exploiting improper validation du...

This vulnerability allows attackers to extract RSA private keys through timing and power side-channel attacks during modular exponentiation in RSA-CRT implementations. It affects Qualcomm Snapdragon c...

This critical vulnerability in Qualcomm Snapdragon chipsets allows remote code execution due to a use-after-free memory corruption flaw in Wi-Fi P2P (peer-to-peer) device address validation. Attackers...

This vulnerability allows remote attackers to execute arbitrary code on affected Qualcomm Snapdragon devices due to a buffer overflow in the P2P search functionality. Attackers can exploit improper va...

This CVE describes a buffer over-read vulnerability in Qualcomm Snapdragon chipsets when processing WPA/RSN information elements in Wi-Fi beacon and response frames. Attackers can exploit this to read...

This vulnerability allows attackers to read memory beyond intended boundaries while parsing WLAN frames in Qualcomm Snapdragon chipsets. It affects numerous Snapdragon product lines including Auto, Mo...

This vulnerability is a buffer over-read in Qualcomm Snapdragon chipsets that occurs when processing Wi-Fi P2P (Peer-to-Peer) information elements and NOA (Notice of Absence) attributes in beacon and ...

This vulnerability involves memory corruption during HDCP session deinitialization, potentially allowing attackers to execute arbitrary code or cause denial of service. It affects systems using Qualco...

This vulnerability involves memory corruption while processing a GP command response in Qualcomm components, potentially allowing attackers to execute arbitrary code or cause denial of service. It aff...

CVE-2024-33056 is a memory corruption vulnerability in Qualcomm's Shared Memory (SMEM) subsystem that allows attackers to potentially execute arbitrary code or cause denial of service. This affects de...

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm WLAN systems by sending a large number of malformed authentication frames with invalid transaction sequence...

This vulnerability in Qualcomm components allows a denial-of-service (DoS) attack when parsing files with specific length characteristics. It affects devices using vulnerable Qualcomm chipsets, potent...

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm WLAN firmware by sending specially crafted IPv6 packets with IPPROTO_NONE as the next header in extension h...

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing command streams through WMI interfaces. Attackers could potentially execute arbitrary co...

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in Qualcomm WLAN firmware by sending specially crafted beacon frames with malformed MBSSID information elements. It a...

This vulnerability allows memory corruption in Qualcomm WLAN firmware when sending transmit commands from the host operating system to UTF handlers. Attackers could potentially execute arbitrary code ...

This vulnerability allows memory corruption in Qualcomm's WLAN HAL (Hardware Abstraction Layer) when parsing received network buffers containing TLV (Type-Length-Value) payloads. Attackers could poten...

This vulnerability allows memory corruption in Qualcomm WLAN handlers when processing PhyID in Tx status handlers. It affects devices with Qualcomm chipsets that handle wireless networking. Attackers ...

This vulnerability allows memory corruption in the WLAN Hardware Abstraction Layer (HAL) when processing devIndex values from untrusted WMI payloads. Attackers could potentially execute arbitrary code...

This vulnerability allows memory corruption in Qualcomm WLAN hardware abstraction layer due to improper array index validation. Attackers could potentially execute arbitrary code or cause denial of se...

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing specific wireless commands. Attackers could potentially execute arbitrary code or cause ...

This CVE describes a buffer overflow vulnerability in Qualcomm modem firmware that allows memory corruption when processing WMI commands. Attackers could potentially execute arbitrary code on affected...

This vulnerability allows attackers to read memory beyond intended boundaries during Wi-Fi SSID information element parsing when using DFS channels on affected Qualcomm Snapdragon chipsets. Successful...

This vulnerability allows improper validation of data length from DMA buffers, leading to memory corruption in Qualcomm Snapdragon chipsets. It affects multiple Snapdragon product lines including Auto...

This vulnerability allows attackers to execute arbitrary code or cause denial of service on affected Qualcomm Snapdragon devices by sending specially crafted segmented WMI commands that trigger a buff...

A null pointer dereference vulnerability in Qualcomm Snapdragon thread cache operation handler allows attackers to cause denial of service or potentially execute arbitrary code by exploiting insuffici...

This vulnerability in Qualcomm Snapdragon chipsets allows potential denial-of-service or arbitrary code execution due to a null pointer dereference in the thread profile trap handler. Attackers could ...

This vulnerability allows attackers to trigger a stack overflow by exploiting improper length validation of TLV (Type-Length-Value) data structures in Qualcomm Snapdragon chipsets. Successful exploita...

This vulnerability allows improper authentication of EAP WAPI EAPOL frames from unauthenticated users, potentially leading to information disclosure. It affects various Snapdragon chipsets used in com...

This vulnerability in Qualcomm Snapdragon chipsets allows attackers to trigger an assertion failure due to lack of physical layer state validation. It affects multiple Snapdragon product lines includi...

CVE-2021-1909 is a buffer overflow vulnerability in Qualcomm Snapdragon trusted applications due to insufficient parameter length validation. This allows attackers to execute arbitrary code in trusted...

This vulnerability in Qualcomm Snapdragon chipsets allows remote attackers to trigger a reachable assertion by sending malformed Fine Timing Measurement Request (FTMR) frames. Exploitation could lead ...

This vulnerability in Qualcomm Snapdragon chipsets allows assertion failures due to improper verification during peer creation/deletion operations. It affects multiple Snapdragon product lines includi...

This vulnerability allows attackers to read memory beyond allocated buffer boundaries in Qualcomm Snapdragon chipsets when parsing beacon responses. It affects devices using vulnerable Snapdragon comp...

This vulnerability in Qualcomm Snapdragon chipsets allows attackers to trigger a denial-of-service condition via the Wi-Fi Fine Timing Measurement protocol. It affects networking infrastructure device...

This vulnerability in Qualcomm Snapdragon chipsets allows an attacker to trigger a reachable assertion while processing WLAN peer association messages, potentially causing denial of service or remote ...

CVE-2020-11235 is a buffer overflow vulnerability in Qualcomm Snapdragon chipsets that occurs when parsing unified commands without proper input validation. Attackers could exploit this to execute arb...

This vulnerability allows an attacker to trigger an out-of-bounds read in Qualcomm Snapdragon chipsets when processing EAPOL keys with insufficient length in NAN shared key descriptor attributes. This...

This vulnerability is a use-after-free flaw in Qualcomm audio drivers affecting multiple Snapdragon platforms. It allows attackers to potentially execute arbitrary code or cause denial of service by e...

This vulnerability in Qualcomm Snapdragon chipsets allows denial of service attacks through improper handling of group management action frames in wireless communication. Attackers can send specially ...

This vulnerability allows attackers to access sensitive information by exploiting improper handling of system calls with invalid parameters. It affects systems using Qualcomm chipsets with vulnerable ...

This CVE describes an information disclosure vulnerability in Qualcomm hypervisor logs that could expose sensitive system information. The vulnerability affects devices using Qualcomm chipsets with vu...