298 known vulnerabilities · sorted by CVSS score
Memory corruption in modem due to improper length check while copying into memory
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
Memory corruption while processing MBSSID beacon containing several subelement IE.
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
Memory corruption while parsing the ML IE due to invalid frame content.
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.
Memory corruption due to double free in core while initializing the encryption key.
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
Memory corruption in Hypervisor when platform information mentioned is not aligned.
Memory corruption in Core while processing control functions.
Memory corruption in Core Services while executing the command for removing a single event listener.
Memory corruption in HLOS while running playready use-case.
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
Memory corruption in core services when Diag handler receives a command to configure event listeners.
Improper Access to the VM resource manager can lead to Memory Corruption.
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.