48 known vulnerabilities · sorted by CVSS score
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
Memory corruption while parsing the ML IE due to invalid frame content.
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Memory corruption during management frame processing due to mismatch in T2LM info element.
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
Information disclosure may occur while processing goodbye RTCP packet from network.
Information disclosure while parsing the OCI IE with invalid length.
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
Memory corruption while processing manipulated payload in video firmware.
Memory corruption while performing private key encryption in trusted application.
Memory corruption while processing video packets received from video firmware.
Memory corruption while performing encryption and decryption commands.
Memory corruption while retrieving the CBOR data from TA.
Memory corruption during the FRS UDS generation process.
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
Memory corruption while triggering commands in the PlayReady Trusted application.
Memory corruption while power-up or power-down sequence of the camera sensor.
Memory corruption in display driver while detaching a device.