| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption when there is failed unmap operation in GPU. |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |
| While processing the authentication message in UE, improper authentication may lead to information disclosure. |
| Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. |
| Information disclosure in WLAN HAL while handling the WMI state info command. |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. |
| Transient DOS while processing PDU Release command with a parameter PDU ID out of range. |
| Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. |
| Transient DOS while processing DL NAS TRANSPORT message with payload length 0. |
| Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. |
| Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR. |
| Memory Corruption in Audio while allocating the ion buffer during the music playback. |
| Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. |
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. |
| Transient DOS while parsing WPA IES, when it is passed with length more than expected size. |
| Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. |
| Cryptographic issue in HLOS during key management. |
