34 known vulnerabilities · sorted by CVSS score
Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.
Memory corruption in HLOS while running playready use-case.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Memory corruption in DSP Service during a remote call from HLOS to DSP.
Memory corruption in Audio during playback with speaker protection.
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
Memory corruption in WLAN HAL while handling command through WMI interfaces.
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
Memory corruption in WLAN handler while processing PhyID in Tx status handler.
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.
Information disclosure in Core services while processing a Diag command.
Transient DOS in Audio while remapping channel buffer in media codec decoding.