| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Cryptographic issue in HLOS during key management. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. |
| Information Disclosure in data Modem while parsing an FMTP line in an SDP message. |
| Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. |
| Memory corruption in Hypervisor when platform information mentioned is not aligned. |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. |
| Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. |
| Memory corruption when BTFM client sends new messages over Slimbus to ADSP. |
| Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. |
| Memory Corruption in Audio while allocating the ion buffer during the music playback. |
| Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command. |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |
| Memory corruption in video while parsing invalid mp2 clip. |
| Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command. |
| Memory corruption in TZ Secure OS while loading an app ELF. |
| Memory corruption while processing finish_sign command to pass a rsp buffer. |
| Memory corruption while running VK synchronization with KASAN enabled. |
