Qualcomm ≫ Wcn6855 Firmware

Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.

Memory corruption in modem due to improper length check while copying into memory

Information disclosure in modem due to buffer over read in dns client due to missing length check

Denial of service in modem due to null pointer dereference while processing DNS packets

Denial of service in modem due to missing null check while processing IP packets with padding

Denial of service in modem due to missing null check while processing TCP or UDP packets from server

Information disclosure in modem due to buffer over-red while performing checksum of packet received

Information disclosure in Trusted Execution Environment due to buffer over-read while processing metadata verification requests.

Information disclosure in modem due to buffer over-read while processing response from DNS server

Memory corruption in core due to stack-based buffer overflow