| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR. |
| Transient DOS while parsing WPA IES, when it is passed with length more than expected size. |
| Memory corruption while using the UIM diag command to get the operators name. |
| Memory corruption while parsing qcp clip with invalid chunk data size. |
| Information disclosure while deriving keys for a session for any Widevine use case. |
| Information disclosure in Video while parsing mp2 clip with invalid section length. |
| Transient DOS in Automotive OS due to improper authentication to the secure IO calls. |
| Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. |
| Memory corruption in video while parsing invalid mp2 clip. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked. |
| Memory corruption in Core when updating rollback version for TA and OTA feature is enabled. |
| Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data. |
| Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. |
| Memory corruption in WLAN due to buffer copy without checking size of input while parsing keys in Snapdragon Connectivity, Snapdragon Mobile |
| Memory corruption in HLOS while running playready use-case. |
| Transient DOS in Data Modem during DTLS handshake. |
| Improper handling of resource allocation in virtual machines can lead to information exposure in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile |
| Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking |
| The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. |
