47 known vulnerabilities · sorted by CVSS score
Memory corruption due to double free in core while initializing the encryption key.
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
Memory corruption in Graphics while importing a file.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Memory corruption in HLOS while invoking IOCTL calls from user-space.
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.
Memory corruption in DSP Service during a remote call from HLOS to DSP.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
Memory corruption in DSP Services during a remote call from HLOS to DSP.
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
Memoru corruption in Audio when ADSP sends input during record use case.
Memory corruption while invoking callback function of AFE from ADSP.
Memory Corruption in Audio while invoking callback function in driver from ADSP.
Memory corruption while using the UIM diag command to get the operators name.