80 known vulnerabilities · sorted by CVSS score
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Memory corruption in Core Services while executing the command for removing a single event listener.
Memory corruption in HLOS while running playready use-case.
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Memory corruption in Graphics while importing a file.
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
Memory corruption in Kernel while parsing metadata.
Memory corruption in Audio while processing RT proxy port register driver.
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption in DSP Service during a remote call from HLOS to DSP.
Memory corruption when there is failed unmap operation in GPU.
Memory corruption in Audio during playback with speaker protection.