| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory Corruption in WLAN HOST while parsing QMI response message from firmware. |
| Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. |
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. |
| Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
| Memory corruption during management frame processing due to mismatch in T2LM info element. |
| Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. |
| Memory corruption while verifying the serialized header when the key pairs are generated. |
| Transient DOS while parse fils IE with length equal to 1. |
| Memory corruption while processing MBSSID beacon containing several subelement IE. |
| Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. |
| Transient DOS while parsing per STA profile in ML IE. |
| Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation. |
| Transient DOS while processing DL NAS TRANSPORT message with payload length 0. |
| Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage. |
| Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. |
| Memory corruption during concurrent access to server info object due to unprotected critical field. |
| Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers. |