48 known vulnerabilities · sorted by CVSS score
Memory corruption due to double free in core while initializing the encryption key.
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
Improper Access to the VM resource manager can lead to Memory Corruption.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
Memory corruption in Graphics while importing a file.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
Memory corruption in HLOS while invoking IOCTL calls from user-space.
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.