Latest CVE Feed
-
6.7
MEDIUMCVE-2024-23379
Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.... Read more
Affected Products : wcd9341_firmware wcd9380_firmware wsa8810_firmware wsa8815_firmware wsa8830_firmware wsa8835_firmware qca6310_firmware qca6584au_firmware qca6698aq_firmware wcd9335_firmware +58 more products- Published: Oct. 07, 2024
- Modified: Oct. 16, 2024
-
6.7
MEDIUMCVE-2024-23378
Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.... Read more
Affected Products : qca6584au_firmware qca6698aq_firmware sa9000p_firmware qam8255p_firmware sa8255p_firmware qam8650p_firmware qam8775p_firmware qca6584au sa8770p_firmware sa8775p_firmware +26 more products- Published: Oct. 07, 2024
- Modified: Oct. 16, 2024
-
6.7
MEDIUMCVE-2024-23376
Memory corruption while sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call.... Read more
Affected Products : qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware sa8195p_firmware sw5100_firmware +32 more products- Published: Oct. 07, 2024
- Modified: Oct. 16, 2024
-
6.7
MEDIUMCVE-2024-23375
Memory corruption during the network scan request.... Read more
Affected Products : sa6155p_firmware sa8155p_firmware sa8195p_firmware sw5100_firmware sw5100p_firmware wcn3980_firmware wcn3988_firmware wsa8830_firmware wsa8835_firmware sa4150p_firmware +18 more products- Published: Oct. 07, 2024
- Modified: Oct. 16, 2024
-
6.7
MEDIUMCVE-2024-23374
Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file.... Read more
Affected Products : qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware sa8195p_firmware sw5100_firmware +42 more products- Published: Oct. 07, 2024
- Modified: Oct. 16, 2024
-
6.7
MEDIUMCVE-2024-23370
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.... Read more
Affected Products : sw5100_firmware sw5100p_firmware wcn3980_firmware wcn3988_firmware wsa8830_firmware wsa8835_firmware qca6584au_firmware qca6698aq_firmware qca9377_firmware qca9367_firmware +12 more products- Published: Oct. 07, 2024
- Modified: Oct. 16, 2024
-
7.8
HIGHCVE-2024-23369
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.... Read more
Affected Products : qam8295p_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware +228 more products- Published: Oct. 07, 2024
- Modified: Aug. 11, 2025
-
7.8
HIGHCVE-2024-21455
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.... Read more
Affected Products : qam8295p_firmware qca6696_firmware sa8295p_firmware wcn3980_firmware wsa8810_firmware wsa8815_firmware qca6584au_firmware qca6595_firmware qca6698aq_firmware sg4150p_firmware +32 more products- Published: Oct. 07, 2024
- Modified: Aug. 11, 2025
-
5.3
MEDIUMCVE-2024-47344
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StylemixThemes uListing.This issue affects uListing: from n/a through 2.1.5.... Read more
Affected Products :- Published: Oct. 07, 2024
- Modified: Oct. 07, 2024
-
7.6
HIGHCVE-2024-47335
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bit Form Bit Form – Contact Form Plugin allows SQL Injection.This issue affects Bit Form – Contact Form Plugin: from n/a through 2.13.11.... Read more
Affected Products :- Published: Oct. 07, 2024
- Modified: Oct. 07, 2024
-
9.8
CRITICALCVE-2024-20103
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; I... Read more
- Published: Oct. 07, 2024
- Modified: Apr. 24, 2025
-
4.9
MEDIUMCVE-2024-20102
In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998892; Iss... Read more
- Published: Oct. 07, 2024
- Modified: Mar. 13, 2025
-
9.8
CRITICALCVE-2024-20101
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998901; Iss... Read more
- Published: Oct. 07, 2024
- Modified: Apr. 24, 2025
-
9.8
CRITICALCVE-2024-20100
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Iss... Read more
- Published: Oct. 07, 2024
- Modified: Apr. 25, 2025
-
6.7
MEDIUMCVE-2024-20099
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08997492; Issue ID: M... Read more
- Published: Oct. 07, 2024
- Modified: Apr. 25, 2025
-
6.7
MEDIUMCVE-2024-20098
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996886; Issue ID: M... Read more
- Published: Oct. 07, 2024
- Modified: Apr. 25, 2025
-
4.4
MEDIUMCVE-2024-20097
In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-... Read more
- Published: Oct. 07, 2024
- Modified: Oct. 27, 2024
-
4.4
MEDIUMCVE-2024-20096
In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996900; Issue ID: MSV-1... Read more
- Published: Oct. 07, 2024
- Modified: Oct. 27, 2024
-
4.4
MEDIUMCVE-2024-20095
In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996894; Issue ID: MSV-1... Read more
- Published: Oct. 07, 2024
- Modified: Oct. 27, 2024
-
7.5
HIGHCVE-2024-20094
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00843282; Issue ID: MSV-15... Read more
- Published: Oct. 07, 2024
- Modified: Apr. 25, 2025