62 known vulnerabilities · sorted by CVSS score
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
Memory corruption due to double free in core while initializing the encryption key.
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
Improper Access to the VM resource manager can lead to Memory Corruption.
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption in Linux Networking due to double free while handling a hyp-assign.
Memory corruption in HLOS while invoking IOCTL calls from user-space.
Memory Corruption in HLOS while registering for key provisioning notify.
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.