14 known vulnerabilities · sorted by CVSS score
Memory Corruption in Audio while allocating the ion buffer during the music playback.
Memory corruption in Graphics while processing user packets for command submission.
Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.
Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.
Memory corruption may occur while validating ports and channels in Audio driver.
Memory corruption while calling the NPU driver APIs concurrently.
Memory corruption when Alternative Frequency offset value is set to 255.
Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
While processing the authentication message in UE, improper authentication may lead to information disclosure.