| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. |
| Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH. |
| Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager message queue. |
| Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. |
| Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message. |
| Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. |
| Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. |
| Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames. |
| Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation. |
| Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message. |
| Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment. |
| Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. |
| Transient DOS due to reachable assertion in Modem because of invalid network configuration. |
| Memory corruption due to double free in core while initializing the encryption key. |
| Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications. |
| Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl queries. |
| Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key. |
| information disclosure due to cryptographic issue in Core during RPMB read request. |
| Assertion occurs while processing Reconfiguration message due to improper validation |
| An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
