118 known vulnerabilities · sorted by CVSS score
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Memory corruption in Core while processing control functions.
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Memory corruption due to double free in core while initializing the encryption key.
Memory corruption in Core Services while executing the command for removing a single event listener.
Memory corruption in HLOS while running playready use-case.
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Memory corruption in Graphics while importing a file.
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Memory Corruption in Core due to secure memory access by user while loading modem image.
Memory corruption when processing cmd parameters while parsing vdev.
Memory corruption when there is failed unmap operation in GPU.
Memory corruption in Audio during playback with speaker protection.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption in Audio while processing RT proxy port register driver.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.