📦 Qcn7606 Firmware
by Qualcomm
🔍 What is Qcn7606 Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This CVE describes a memory corruption vulnerability in Qualcomm Core components that could allow attackers to execute arbitrary code or cause denial of service. It affects devices using vulnerable Qu...
CVE-2023-28562 is a critical buffer overflow vulnerability in Qualcomm chipsets that allows remote attackers to execute arbitrary code or cause denial of service by sending specially crafted ESL paylo...
CVE-2023-28561 is a critical memory corruption vulnerability in Qualcomm's QESL (Qualcomm Enhanced Sensor Layer) that allows attackers to execute arbitrary code or cause denial of service by sending s...
CVE-2023-21651 is a memory corruption vulnerability in Qualcomm's Trusted Execution Environment (TEE) due to incorrect type conversion in secure_io_read/write functions. This allows attackers to poten...
CVE-2022-33231 is a double-free memory corruption vulnerability in Qualcomm chipsets that occurs during encryption key initialization. Successful exploitation could allow attackers to execute arbitrar...
This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via buffer overflow in Qualcomm Snapdragon chipsets. It affects devices using vulnerable Snapdragon comp...
This vulnerability allows attackers to bypass image verification in Qualcomm Snapdragon chipsets by exploiting improper validation of ELF metadata in program headers. This affects numerous Snapdragon ...
This CVE describes a buffer over-read vulnerability in Qualcomm Snapdragon chipsets when processing WPA/RSN information elements in Wi-Fi beacon and response frames. Attackers can exploit this to read...
This vulnerability allows attackers to read memory beyond intended boundaries while parsing WLAN frames in Qualcomm Snapdragon chipsets. It affects numerous Snapdragon product lines including Auto, Mo...
This is a use-after-free vulnerability in Qualcomm Snapdragon chipsets that allows attackers to execute arbitrary code or cause denial of service. It affects a wide range of Snapdragon-powered devices...
This vulnerability is a buffer over-read in Qualcomm Snapdragon chipsets that occurs when processing Wi-Fi P2P (Peer-to-Peer) information elements and NOA (Notice of Absence) attributes in beacon and ...
This vulnerability is a buffer over-read in Qualcomm Snapdragon chipsets when processing L2CAP Bluetooth packets, caused by missing integer overflow checks. It allows attackers to read memory beyond a...
This vulnerability allows memory corruption in Qualcomm's PlayReady APP implementation when processing TA commands, potentially enabling arbitrary code execution. It affects devices with Qualcomm chip...
This vulnerability allows attackers to cause a denial of service (DoS) condition by sending specially crafted EPTM test control messages. It affects systems using Qualcomm components that process thes...
This vulnerability allows memory corruption when retrieving CBOR data from a Trusted Application (TA) in Qualcomm components. Attackers could potentially execute arbitrary code or cause denial of serv...
This CVE describes a memory corruption vulnerability in Qualcomm's secure file reading functionality. Attackers could exploit this to execute arbitrary code or cause denial of service. The vulnerabili...
This vulnerability allows memory corruption when a user-space application makes a specific IOCTL call to read board data on Qualcomm chipsets. Attackers could potentially execute arbitrary code or cau...
This vulnerability allows user-space applications to trigger memory corruption through an IOCTL call when reading board data. It affects systems using Qualcomm hardware with vulnerable drivers. Succes...
This vulnerability allows memory corruption when a user-space application makes a specific IOCTL call to write board data to the WLAN driver. Attackers could potentially execute arbitrary code or caus...
This vulnerability allows local attackers to cause memory corruption in WLAN drivers by sending specially crafted IOCTL calls. It affects systems with Qualcomm wireless chipsets, potentially leading t...
This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in affected Wi-Fi systems by sending specially crafted beacon frames with malformed TIM (Traffic Indication Map) Info...
This vulnerability involves a cryptographic issue in RSA key parsing in COBR format, potentially allowing attackers to bypass cryptographic protections or cause denial of service. It affects systems u...
This vulnerability involves memory corruption when an invoke call and a TEE (Trusted Execution Environment) call target the same trusted application simultaneously. It affects devices with Qualcomm ch...
This vulnerability allows a denial-of-service attack when loading Trusted Application (TA) ELF files on Qualcomm chipsets. It affects devices using Qualcomm processors with vulnerable firmware. Attack...
This CVE describes a memory corruption vulnerability in the SPS Application's sorter Trusted Application (TA) when requesting public keys. Successful exploitation could allow attackers to execute arbi...
This vulnerability allows memory corruption when parsing QCP audio files with invalid chunk data sizes. Attackers could potentially execute arbitrary code or cause denial of service by tricking users ...
This vulnerability in Qualcomm components allows a denial-of-service (DoS) attack when parsing files with specific length characteristics. It affects devices using vulnerable Qualcomm chipsets, potent...
This vulnerability allows memory corruption in video processing when parsing Videoinfo atoms with sizes larger than expected. Attackers could potentially execute arbitrary code or cause denial of serv...
This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm WLAN firmware by sending specially crafted IPv6 packets with IPPROTO_NONE as the next header in extension h...
This CVE describes a memory corruption vulnerability in the UEFI boot process when running a ListVars test during boot. It affects Qualcomm devices with vulnerable firmware, potentially allowing attac...
This vulnerability allows memory corruption in the High-Level Operating System (HLOS) when user-space applications make specific IOCTL calls to Qualcomm hardware components. Attackers could exploit th...
This vulnerability allows memory corruption while loading ELF segments in the Trusted Execution Environment (TEE) kernel. Attackers could potentially execute arbitrary code in the TEE, compromising se...
This vulnerability allows memory corruption in Qualcomm Bluetooth controllers when parsing specific debug commands at the HCI interface level. Attackers could potentially execute arbitrary code or cau...
This vulnerability allows memory corruption in Qualcomm's SPS application when exporting public keys in the sorter TA. Attackers could potentially execute arbitrary code or cause denial of service on ...
A cryptographic vulnerability in Qualcomm's HLOS (High-Level Operating System) during key management allows potential unauthorized access to sensitive cryptographic material. This affects devices usin...
This vulnerability allows memory corruption in Qualcomm's Core due to improper secure memory access while loading modem images. Attackers could potentially execute arbitrary code or cause denial of se...
This vulnerability allows memory corruption in the High-Level Operating System (HLOS) when importing cryptographic keys into the KeyMaster Trusted Application on Qualcomm chipsets. Attackers could pot...
This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing command streams through WMI interfaces. Attackers could potentially execute arbitrary co...
This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in Qualcomm WLAN firmware by sending specially crafted beacon frames with malformed MBSSID information elements. It a...
This vulnerability allows memory corruption in Qualcomm WIN Product's UEFI region when invoking the WinAcpi update driver. Attackers could exploit this to execute arbitrary code or cause system crashe...
This vulnerability allows memory corruption in Qualcomm WLAN firmware when sending transmit commands from the host operating system to UTF handlers. Attackers could potentially execute arbitrary code ...
This vulnerability allows memory corruption in Qualcomm WLAN handlers when processing PhyID in Tx status handlers. It affects devices with Qualcomm chipsets that handle wireless networking. Attackers ...
This vulnerability allows memory corruption in the WLAN Hardware Abstraction Layer (HAL) when processing devIndex values from untrusted WMI payloads. Attackers could potentially execute arbitrary code...
This cryptographic vulnerability in Qualcomm's HLOS (High-Level Operating System) allows improper authentication during key velocity checks when multiple keys are involved. It affects devices using Qu...
This vulnerability allows memory corruption in Qualcomm data modem firmware when processing DMA buffer release events for CFR data. Attackers could potentially execute arbitrary code or cause denial o...
This vulnerability allows attackers to exploit indirect branch misprediction in Qualcomm chipsets to leak sensitive information from the kernel memory. It affects devices using vulnerable Qualcomm Sna...
This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing specific wireless commands. Attackers could potentially execute arbitrary code or cause ...
This vulnerability allows attackers to read sensitive information from Bluetooth-enabled devices during A2DP audio streaming. It affects devices with Qualcomm Bluetooth chipsets that have not been pat...
This vulnerability allows memory corruption through a double-free error when processing specially crafted 3gp video files with invalid metadata atoms. Attackers could potentially execute arbitrary cod...
This vulnerability allows attackers to execute arbitrary code or cause denial of service on affected Qualcomm WLAN chipsets due to memory corruption during initialization. It affects devices using vul...
This CVE describes a buffer overflow vulnerability in Qualcomm modem firmware that allows memory corruption when processing WMI commands. Attackers could potentially execute arbitrary code on affected...
This vulnerability is an out-of-bounds read in the WLAN HOST component of Qualcomm Snapdragon chipsets due to improper length checking. It affects multiple Qualcomm Snapdragon product lines including ...
This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending invalid Bluetooth Low Energy (LE) connection requests during a connectable scan. It affects devices with Qualc...
This vulnerability allows attackers to read sensitive information from image processing operations by manipulating offset and size parameters. It affects systems using Qualcomm components with vulnera...
This vulnerability allows attackers to read sensitive information from memory when processing specially crafted MBN files. It affects systems using Qualcomm chipsets that process MBN files, potentiall...
This vulnerability allows an attacker to cause a denial of service (DoS) by providing a specially crafted PKCS#8-encoded RSA key with a zero-byte modulus during key import operations. Systems using af...