| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Memory corruption in Core due to improper configuration in boot remapper. |
| Memory corruption due to stack-based buffer overflow in Core |
| Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data. |
| Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed. |
| Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. |
| Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. |
| Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM |
| Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. |
| Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. |
| Memory corruption in WLAN HAL while handling command streams through WMI interfaces. |
| Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user. |
| An image with a version lower than the fuse version may potentially be booted lead to improper authentication. |
| An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat' |
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. |
| Certain unprivileged processes are able to perform IOCTL calls. |
| Memory corruption while performing finish HMAC operation when context is freed by keymaster. |
| Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. |
| Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. |
| Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. |
