| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory Corruption in Data Modem while making a MO call or MT VOLTE call. |
| Information disclosure in WLAN HAL while handling command through WMI interfaces. |
| Memory corruption in Modem while processing security related configuration before AS Security Exchange. |
| Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. |
| Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware. |
| Information disclosure in WLAN HAL while handling the WMI state info command. |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |
| Information disclosure while deriving keys for a session for any Widevine use case. |
| Transient DOS in WLAN Firmware while parsing a NAN management frame. |
| Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point. |
| Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests. |
| Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command. |
| Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage. |
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. |
| Memory corruption in Core while processing control functions. |
| Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. |
