15 known vulnerabilities · sorted by CVSS score
Memory corruption in Core Services while executing the command for removing a single event listener.
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render.
Memory corruption while processing the IOCTL FM HCI WRITE request.
Memory corruption in Audio while processing RT proxy port register driver.
Memory corruption while processing finish_sign command to pass a rsp buffer.
Memory corruption in SPS Application while requesting for public key in sorter TA.
Memory corruption while processing escape code, when DisplayId is passed with large unsigned value.
Memory corruption when the payload received from firmware is not as per the expected protocol size.
Memory corruption while processing a private escape command in an event trigger.
Memory corruption during the image encoding process.
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.