In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.
Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.
Transient DOS when processing a received frame with an excessively large authentication information element.
Transient DOS while handling beacon frames with invalid IE header length.
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the proce
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
Transient DOS while processing received beacon frame.
Transient DOS while parsing the received TID-to-link mapping action frame.
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
Transient DOS while parsing ESP IE from beacon/probe response frame.
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
Transient DOS when processing target power rate tables during channel configuration.
Out-of-bounds read vulnerability in the M3U8 module
Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
Transient DOS while parsing video packets received from the video firmware.
Transient DOS while processing CCCH data when NW sends data with invalid length.
Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element.
Out-of-bounds read (CWE-125) allows an unauthenticated remote attacker to perform a buffer overflow (CAPEC-100) via the NFS protocol dissector, leading to a denial-of-service (DoS) through a reliable
Transient DOS while processing video packets received from video firmware.
Transient DOS may occur while processing malformed length field in SSID IEs.
Page 1+ Next →