| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS due to improper authorization in Modem |
| Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
| Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. |
| Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. |
| Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. |
| Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. |
| Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. |
| Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. |
| Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. |
| Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
| Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
| Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. |
| Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. |
| Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD. |
| Memory corruption due to configuration weakness in modem wile sending command to write protected files. |
| Memory corruption due to double free in core while initializing the encryption key. |
| Memory corruption in modem due to buffer overflow while processing a PPP packet |
| Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response |
| Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music |
| Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. |
