CVE-2024-38410
- EPSS 0.04%
- Published 04.11.2024 10:15:07
- Last modified 07.11.2024 19:41:06
Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
CVE-2024-38405
- EPSS 0.19%
- Published 04.11.2024 10:15:06
- Last modified 07.11.2024 20:06:14
Transient DOS while processing the CU information from RNR IE.
CVE-2024-33032
- EPSS 0.03%
- Published 04.11.2024 10:15:05
- Last modified 07.11.2024 19:59:54
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.
CVE-2024-23385
- EPSS 0.08%
- Published 04.11.2024 10:15:04
- Last modified 07.11.2024 20:05:24
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
CVE-2024-43047
- EPSS 0.4%
- Published 07.10.2024 13:15:15
- Last modified 11.08.2025 15:06:17
Memory corruption while maintaining memory maps of HLOS memory.
CVE-2024-38397
- EPSS 0.21%
- Published 07.10.2024 13:15:14
- Last modified 11.08.2025 15:06:17
Transient DOS while parsing probe response and assoc response frame.
CVE-2024-33073
- EPSS 0.18%
- Published 07.10.2024 13:15:13
- Last modified 11.08.2025 15:06:17
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2024-33049
- EPSS 0.21%
- Published 07.10.2024 13:15:12
- Last modified 11.08.2025 15:06:17
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
CVE-2024-33065
- EPSS 0.04%
- Published 07.10.2024 13:15:12
- Last modified 11.08.2025 15:06:17
Memory corruption while taking snapshot when an offset variable is set by camera driver.
CVE-2024-23369
- EPSS 0.04%
- Published 07.10.2024 13:15:10
- Last modified 11.08.2025 15:06:17
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.