ipq5300_firmware

qualcomm / ar8035_firmware+126

Published Oct 7, 2024

Page 1 of 3

CVE-2024-21473

CRITICAL9.8

Memory corruption while redirecting log file to any file location with any file name.

qualcomm / ar8035_firmware+173

Published Apr 1, 2024

CVE-2024-45569

CRITICAL9.8

Memory corruption while parsing the ML IE due to invalid frame content.

qualcomm / 315_5g_iot_modem_firmware+329

Published Feb 3, 2025

CVE-2024-33056

HIGH8.4

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

qualcomm / ar8035_firmware+185

Published Dec 2, 2024

CVE-2024-49839

HIGH8.2

Memory corruption during management frame processing due to mismatch in T2LM info element.

qualcomm / wsa8845h_firmware+158

Published Feb 3, 2025

CVE-2024-33073

HIGH8.2

Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.

qualcomm / ar8035_firmware+149

Published Oct 7, 2024

CVE-2024-45571

HIGH7.8

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

qualcomm / apq8064au_firmware+342

Published Feb 3, 2025

CVE-2024-23368

HIGH7.8

Memory corruption when allocating and accessing an entry in an SMEM partition.

qualcomm / qcn6224_firmware+152

Published Jul 1, 2024

CVE-2024-43057

HIGH7.8

Memory corruption while processing command in Glink linux.

Published Mar 3, 2025

CVE-2024-21477

qualcomm / aqt1000_firmware+183

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.

Published May 6, 2024

CVE-2024-33049

qualcomm / snapdragon_w5\+_gen_1_wearable_platform_firmware+130

Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.

Published Oct 7, 2024

CVE-2024-45558

qualcomm / ar8035_firmware+182

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

Published Jan 6, 2025

CVE-2024-33024

qualcomm / ar8035_firmware+180

Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.

CVE-2024-33026

qualcomm / ar8035_firmware+164

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.

CVE-2024-33015

qualcomm / ar8035_firmware+194

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

CVE-2024-33012

qualcomm / wsa8845h_firmware+248

Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.

CVE-2024-33050

qualcomm / ar8035_firmware+256

Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.

Published Sep 2, 2024

CVE-2024-33063

qualcomm / ar8035_firmware+123

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.

Published Dec 2, 2024

CVE-2025-47328

qualcomm / fastconnect_7800_firmware+66

Transient DOS while processing power control requests with invalid antenna or stream values.

Published Sep 24, 2025

CVE-2024-33014

qualcomm / 315_5g_iot_modem_firmware+324

Transient DOS while parsing ESP IE from beacon/probe response frame.