| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. |
| Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. |
| Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. |
| Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. |
| Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. |
| Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. |
| Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
| Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation. |
| Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
| Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment. |
| Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. |
| Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone. |
| Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. |
| Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD. |
| Memory corruption due to configuration weakness in modem wile sending command to write protected files. |
| Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory. |
| Memory corruption due to double free in core while initializing the encryption key. |
| Memory corruption in modem due to buffer overflow while processing a PPP packet |
| Information disclosure in Bluetooth driver due to buffer over-read while reading l2cap length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables |
| Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response |
