| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Transient DOS in Automotive OS due to improper authentication to the secure IO calls. |
| Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level. |
| Information disclosure while deriving keys for a session for any Widevine use case. |
| Memory Corruption in Audio while allocating the ion buffer during the music playback. |
| Transient DOS in Audio when invoking callback function of ASM driver. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Memory corruption during management frame processing due to mismatch in T2LM info element. |
| Memory corruption in Audio while processing IIR config data from AFE calibration block. |
| Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. |
| Memory corruption while parsing the ADSP response command. |
| Memory corruption while processing MBSSID beacon containing several subelement IE. |
| Memory corruption in HLOS while checking for the storage type. |
| Memory corruption while verifying the serialized header when the key pairs are generated. |
| Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame. |
| Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. |
| Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise. |
| Memory corruption while triggering commands in the PlayReady Trusted application. |
