| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption in Audio when memory map command is executed consecutively in ADSP. |
| Memory Corruption in Data Modem while making a MO call or MT VOLTE call. |
| Memory corruption may occur while validating ports and channels in Audio driver. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption while using the UIM diag command to get the operators name. |
| Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. |
| Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. |
| Information Disclosure in data Modem while parsing an FMTP line in an SDP message. |
| Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
| Memory Corruption in WLAN HOST while parsing QMI response message from firmware. |
| Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message. |
| Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. |
| Memory corruption while processing finish_sign command to pass a rsp buffer. |
| Transient DOS in Bluetooth Host while rfc slot allocation. |
| Memory corruption in HLOS while running playready use-case. |
| Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| Memory corruption due to use after free issue in kernel while processing ION handles in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. |
| Memory corruption in Audio during playback with speaker protection. |
