CPE Details
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:h:qualcomm:wcn7860:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
wcn7860Version
-Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. | 7.8 |
High |
||
| Transient DOS while parsing per STA profile in ML IE. | 7.5 |
High |
||
| Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. | 7.8 |
High |
||
| Memory corruption during the FRS UDS generation process. | 7.8 |
High |
||
| Memory corruption while triggering commands in the PlayReady Trusted application. | 7.8 |
High |
||
| Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. | 7.8 |
High |
||
| Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. | 7.8 |
High |
||
| Memory corruption while reading secure file. | 7.8 |
High |
||
| Transient DOS can occur while processing UCI command. | 5.5 |
Medium |
||
| Memory corruption in display driver while detaching a device. | 7.8 |
High |
||
| Memory corruption may occur while validating ports and channels in Audio driver. | 7.8 |
High |
||
| Memory corruption while processing IOCTL from user space to handle GPU AHB bus error. | 7.8 |
High |
||
| Memory corruption during management frame processing due to mismatch in T2LM info element. | 9.8 |
Critical |
||
| Information disclosure while parsing the OCI IE with invalid length. | 8.2 |
High |
||
| Memory corruption while power-up or power-down sequence of the camera sensor. | 7.8 |
High |
||
| Memory corruption can occur in the camera when an invalid CID is used. | 7.8 |
High |
||
| Memory corruption in Camera due to unusually high number of nodes passed to AXI port. | 7.8 |
High |
||
| Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. | 7.8 |
High |
||
| Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface. | 7.8 |
High |
||
| Memory corruption while parsing the ML IE due to invalid frame content. | 9.8 |
Critical |
||
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. | 7.5 |
High |
||
| Memory corruption while processing API calls to NPU with invalid input. | 7.8 |
High |
||
| Memory corruption when invalid input is passed to invoke GPU Headroom API call. | 7.8 |
High |
||
| Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present. | 7.5 |
High |
||
| Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | 8.4 |
High |
||
| Memory corruption during GNSS HAL process initialization. | 7.8 |
High |
||
| Memory corruption while processing GPU commands. | 7.8 |
High |
||
| Memory corruption while handling session errors from firmware. | 7.8 |
High |
||
| Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | 9.1 |
Critical |
||
| Transient DOS while processing the CU information from RNR IE. | 7.5 |
High |
||
| Transient DOS while parsing BTM ML IE when per STA profile is not included. | 7.5 |
High |
||
| Transient DOS while parsing fragments of MBSSID IE from beacon frame. | 7.5 |
High |
