7.8CVSS
7.6AI Score
0.0004EPSS
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.
7.8CVSS
7.9AI Score
0.0004EPSS
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in QESL while processing payload from external ESL device to firmware.
9.8CVSS
9.4AI Score
0.001EPSS
9.8CVSS
9.6AI Score
0.001EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
7.8CVSS
7.9AI Score
0.0004EPSS
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
7.8CVSS
7.9AI Score
0.0004EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
6.1CVSS
5.6AI Score
0.0004EPSS
8.8CVSS
8.8AI Score
0.0004EPSS
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
6.5CVSS
6.4AI Score
0.0004EPSS
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
7.8CVSS
7.9AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
7.5CVSS
7.5AI Score
0.0005EPSS
7.8CVSS
7.7AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
9.3CVSS
7.8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
9.3CVSS
7.8AI Score
0.0004EPSS
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
7.5CVSS
7.5AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
7.5CVSS
7.5AI Score
0.0004EPSS
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
7.5CVSS
7.6AI Score
0.0005EPSS
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.
7.5CVSS
7.5AI Score
0.0004EPSS
Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer.
7.5CVSS
7.5AI Score
0.0004EPSS
9.8CVSS
9.5AI Score
0.001EPSS
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
9.8CVSS
9.5AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
8.4CVSS
8.6AI Score
0.0004EPSS
7.1CVSS
7AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
7.8CVSS
7.5AI Score
0.0004EPSS