Qualcomm ≫ Wcn3990 Firmware

Memory corruption while reading secure file.

Memory corruption during concurrent access to server info object due to unprotected critical field.

Transient DOS may occur while parsing EHT operation IE or EHT capability IE.

Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request.

Memory corruption while processing multiple IOCTL calls from HLOS to DSP.

Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.

Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.

Memory corruption while handling file descriptor during listener registration/de-registration.

There may be information disclosure during memory re-allocation in TZ Secure OS.