Security Vulnerabilities - CVEs Published In September 2024
Memory corruption when Alternative Frequency offset value is set to 255.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-09-02
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-09-02
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Cryptographic issue while parsing RSA keys in COBR format.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-09-02
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Memory corruption while releasing shared resources in MinkSocket listener thread.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
memory corruption when an invalid firehose patch command is invoked.
CVSS Score
6.8
EPSS Score
0.001
Published
2024-09-02
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
CVSS Score
8.2
EPSS Score
0.001
Published
2024-09-02
The Ninja Forms WordPress plugin before 3.8.11 does not escape an URL before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
CVSS Score
6.1
EPSS Score
0.012
Published
2024-09-02