| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Memory corruption due to stack-based buffer overflow in Core |
| Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. |
| Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. |
| Information disclosure due to buffer overread in Core |
| Information disclosure due to buffer overread in Core |
| Memory corruption in core due to stack-based buffer overflow |
| Memory corruption in Core due to stack-based buffer overflow. |
| Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. |
| Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. |
| Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM |
| Memory corruption in Core Platform while printing the response buffer in log. |
| Memory Corruption in Core Platform while printing the response buffer in log. |
| Memory Corruption in Audio while playing amrwbplus clips with modified content. |
| Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE. |
| Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. |
| Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. |
| Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. |
| Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. |
| Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. |
