| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption while using the UIM diag command to get the operators name. |
| Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received. |
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. |
| Transient DOS in WLAN Firmware while parsing no-inherit IES. |
| Memory corruption when multiple listeners are being registered with the same file descriptor. |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. |
| Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host. |
| Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. |
| Memory corruption in Audio while processing the calibration data returned from ACDB loader. |
| Memory corruption in Audio while running invalid audio recording from ADSP. |
| Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. |
| Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. |
| Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. |
| Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. |
| Transient DOS while parsing per STA profile in ML IE. |
| Memory corruption while invoking HGSL IOCTL context create. |
| Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
