| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Information disclosure in WLAN HAL while handling command through WMI interfaces. |
| Memory corruption in HLOS while checking for the storage type. |
| Information Disclosure in data Modem while parsing an FMTP line in an SDP message. |
| Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. |
| Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. |
| While processing the authentication message in UE, improper authentication may lead to information disclosure. |
| Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. |
| Information disclosure in IOE Firmware while handling WMI command. |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. |
| Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem. |
| Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. |
| Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size. |
| Memory corruption while verifying the serialized header when the key pairs are generated. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
| Memory corruption when there is failed unmap operation in GPU. |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. |
| Memory corruption while playing audio file having large-sized input buffer. |
| Transient DOS during hypervisor virtual I/O operation in a virtual machine. |
