CVE ID | Publié | Description | Score | Gravité |
---|---|---|---|---|
Information disclosure while deriving keys for a session for any Widevine use case. | 5.5 |
Moyen |
||
While processing the authentication message in UE, improper authentication may lead to information disclosure. | 5.4 |
Moyen |
||
Memory corruption when BTFM client sends new messages over Slimbus to ADSP. | 8.4 |
Haute |
||
Memory corruption in Graphics while processing user packets for command submission. | 8.4 |
Haute |
||
Memory corruption in WLAN HAL while handling command through WMI interfaces. | 7.8 |
Haute |
||
Memory corruption in WLAN HAL while handling command streams through WMI interfaces. | 7.8 |
Haute |
||
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. | 7.8 |
Haute |
||
The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it. | 7.8 |
Haute |
||
Memory Corruption in WLAN HOST while fetching TX status information. | 7.8 |
Haute |
||
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. | 7.8 |
Haute |
||
Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message. | 7.8 |
Haute |
||
Memory Corruption in WLAN HOST while parsing QMI response message from firmware. | 7.8 |
Haute |
||
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. | 7.8 |
Haute |
||
Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. | 7.8 |
Haute |
||
Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions. | 8.4 |
Haute |
||
Memory corruption in Audio while processing sva_model_serializer using memory size passed by HIDL client. | 7.8 |
Haute |
||
Memory corruption in Linux while calling system configuration APIs. | 7.8 |
Haute |
||
Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony. | 7.8 |
Haute |
||
Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request. | 7.8 |
Haute |
||
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. | 9.8 |
Critique |
||
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. | 6.8 |
Moyen |
||
Information disclosure in DSP Services while loading dynamic module. | 6.2 |
Moyen |