15 known vulnerabilities · sorted by CVSS score
Memory Corruption in Audio while allocating the ion buffer during the music playback.
Memory corruption in SPS Application while requesting for public key in sorter TA.
Memory corruption in Audio while processing RT proxy port register driver.
Memory corruption when there is failed unmap operation in GPU.
Memory corruption in Graphics while processing user packets for command submission.
Memory corruption while processing finish_sign command to pass a rsp buffer.
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
Transient DOS while processing received beacon frame.
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
Transient DOS may occur while processing malformed length field in SSID IEs.
Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.