41 known vulnerabilities · sorted by CVSS score
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
Memory corruption while processing MBSSID beacon containing several subelement IE.
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.
Memory corruption in WLAN Host while processing RRM beacon on the AP.
Memory corruption in Core while processing control functions.
Memory corruption when processing cmd parameters while parsing vdev.
Memory corruption while processing TPC target power table in FTM TPC.
Memory Corruption in Core due to secure memory access by user while loading modem image.
Memory corruption in Kernel while parsing metadata.
Memory corruption while loading an ELF segment in TEE Kernel.
Transient DOS in WLAN Firmware while parsing rsn ies.
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
Transient DOS in WLAN Firmware while parsing t2lm buffers.
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.