53 known vulnerabilities · sorted by CVSS score
Memory corruption while selecting the PLMN from SOR failed list.
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
Memory corruption when two threads try to map and unmap a single node simultaneously.
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
Memory corruption during PlayReady APP usecase while processing TA commands.
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
Memory corruption when keymaster operation imports a shared key.
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.
Memory corruption while processing a malformed license file during reboot.
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
Memory corruption while handling session errors from firmware.
Memory corruption while performing encryption and decryption commands.