7.8
CVE-2024-38410 - Stack-based Buffer Overflow in WLAN Windows Host
Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
7.8
CVE-2024-38409 - Buffer Copy Without Checking Size of Input in WLAN Windows Host
Memory corruption while station LL statistic handling.
8.2
CVE-2024-38408 - Cryptographic Issues in BT Controller
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
7.8
CVE-2024-38407 - Time-of-check Time-of-use (TOCTOU) Race Condition in Camera
Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.
7.8
CVE-2024-38406 - Time-of-check Time-of-use (TOCTOU) Race Condition in Camera
Memory corruption while handling IOCTL calls in JPEG Encoder driver.
7.5
CVE-2024-38405 - Buffer Over-read in WLAN Host
Transient DOS while processing the CU information from RNR IE.
7.5
CVE-2024-38403 - Buffer Over-read in WLAN Firmware
Transient DOS while parsing BTM ML IE when per STA profile is not included.
7.5
CVE-2024-33068 - Use After Free in WLAN Host Communication
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
6.7
CVE-2024-33033 - Use After Free in ComputerVision
Memory corruption while processing IOCTL calls to unmap the buffers.
6.7
CVE-2024-33032 - Improper Validation of Array Index in Camera_Linux
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.