| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received. |
| Memory corruption while processing video packets received from video firmware. |
| Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. |
| Memory corruption in SPS Application while requesting for public key in sorter TA. |
| Memory Corruption in SPS Application while exporting public key in sorter TA. |
| Transient DOS while parsing probe response and assoc response frame. |
| Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers. |
| Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. |
| Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption in Audio while processing IIR config data from AFE calibration block. |
| Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. |
| Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. |
| Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem. |
| Memory corruption when IOMMU unmap of a GPU buffer fails in Linux. |
| Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. |
| While processing the authentication message in UE, improper authentication may lead to information disclosure. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
| Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. |
| Transient DOS in WLAN Firmware while parsing a BTM request. |
