| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Information disclosure due to buffer over-read in Bluetooth HOST while pairing and connecting A2DP. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Memory corruption in video driver due to type confusion error during video playback |
| Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. |
| Memory corruption in display due to double free while allocating frame buffer memory |
| Memory corruption in display driver due to incorrect type casting while accessing the fence structure fields |
| Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote |
| Denial of service while processing fastboot flash command on mmc due to buffer over read |
| Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device. |
| Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM |
| Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU. |
| Memory corruption while taking a snapshot with hardware encoder due to unvalidated userspace buffer. |
| Memory corruption while handling IOCTL call from user-space to set latency level. |
| Memory corruption may occour while generating test pattern due to negative indexing of display ID. |
| Memory corruption while power-up or power-down sequence of the camera sensor. |
| Memory corruption in Camera due to unusually high number of nodes passed to AXI port. |
| Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem. |
| Information disclosure while processing IO control commands. |
| Memory corruption while parsing the memory map info in IOCTL calls. |
