ReportizFlow
Filtered by vendor
Subscriptions
Total
431 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-52877 | 1 Insyde | 1 Insydeh2o | 2025-08-15 | 7.5 High |
| An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, callback function SmmCreateVariableLockList () calls CreateVariableLockListInSmm (). In CreateVariableLockListInSmm (), it uses StrSize () to get variable name size and it could lead to a buffer over-read. | ||||
| CVE-2024-52878 | 1 Insyde | 1 Insydeh2o | 2025-08-15 | 7.5 High |
| An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, VariableServicesSetVariable () can be called by gRT_>SetVariable () or the SmmSetSensitiveVariable () or SmmInternalSetVariable () from SMM. In VariableServicesSetVariable (), it uses StrSize () to get variable name size, uses StrLen () to get variable name length and uses StrCmp () to compare strings. These actions may cause a buffer over-read. | ||||
| CVE-2024-52879 | 1 Insyde | 1 Insydeh2o | 2025-08-15 | 7.5 High |
| An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, SmmUpdateVariablePropertySmi () is a SMM callback function and it uses StrCmp () to compare variable names. This action may cause a buffer over-read. | ||||
| CVE-2024-33051 | 1 Qualcomm | 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more | 2025-08-11 | 7.5 High |
| Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | ||||
| CVE-2023-28541 | 1 Qualcomm | 426 Aqt1000, Aqt1000 Firmware, Ar8031 and 423 more | 2025-08-11 | 7.8 High |
| Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. | ||||
| CVE-2024-38397 | 1 Qualcomm | 234 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 231 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing probe response and assoc response frame. | ||||
| CVE-2023-33115 | 1 Qualcomm | 336 Aqt1000, Aqt1000 Firmware, Ar8035 and 333 more | 2025-08-11 | 7.8 High |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. | ||||
| CVE-2023-43536 | 1 Qualcomm | 618 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 615 more | 2025-08-11 | 7.5 High |
| Transient DOS while parse fils IE with length equal to 1. | ||||
| CVE-2023-33062 | 1 Qualcomm | 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more | 2025-08-11 | 7.5 High |
| Transient DOS in WLAN Firmware while parsing a BTM request. | ||||
| CVE-2023-43537 | 1 Qualcomm | 224 Ar8035, Ar8035 Firmware, Csr8811 and 221 more | 2025-08-11 | 6.5 Medium |
| Information disclosure while handling T2LM Action Frame in WLAN Host. | ||||
| CVE-2024-33073 | 1 Qualcomm | 320 Ar8035, Ar8035 Firmware, Csr8811 and 317 more | 2025-08-11 | 8.2 High |
| Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. | ||||
| CVE-2025-21459 | 1 Qualcomm | 248 Ar8035, Ar8035 Firmware, Fastconnect 6700 and 245 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing per STA profile in ML IE. | ||||
| CVE-2024-33049 | 1 Qualcomm | 262 Csr8811, Csr8811 Firmware, Fastconnect 6700 and 259 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame. | ||||
| CVE-2023-43527 | 1 Qualcomm | 108 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 105 more | 2025-08-11 | 6.8 Medium |
| Information disclosure while parsing dts header atom in Video. | ||||
| CVE-2023-33065 | 1 Qualcomm | 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more | 2025-08-11 | 6.1 Medium |
| Information disclosure in Audio while accessing AVCS services from ADSP payload. | ||||
| CVE-2023-43528 | 1 Qualcomm | 182 Ar8035, Ar8035 Firmware, C-v2x 9150 and 179 more | 2025-08-11 | 6.1 Medium |
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | ||||
| CVE-2023-33080 | 1 Qualcomm | 733 315 5g Iot Modem, 315 5g Iot Modem Firmware, 8098 and 730 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | ||||
| CVE-2023-33098 | 1 Qualcomm | 526 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 523 more | 2025-08-11 | 7.5 High |
| Transient DOS while parsing WPA IES, when it is passed with length more than expected size. | ||||
| CVE-2023-43555 | 1 Qualcomm | 238 215 Mobile, 215 Mobile Firmware, Aqt1000 and 235 more | 2025-08-11 | 8.2 High |
| Information disclosure in Video while parsing mp2 clip with invalid section length. | ||||
| CVE-2023-33047 | 1 Qualcomm | 356 Ar8035, Ar8035 Firmware, Ar9380 and 353 more | 2025-08-11 | 7.5 High |
| Transient DOS in WLAN Firmware while parsing no-inherit IES. | ||||