6.2CVSS
5.3AI Score
0.0004EPSS
information disclosure due to cryptographic issue in Core during RPMB read request.
7.1CVSS
5.2AI Score
0.0004EPSS
Denial of service while processing fastboot flash command on mmc due to buffer over read
4.6CVSS
4.9AI Score
0.001EPSS
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
9.8CVSS
9AI Score
0.001EPSS
Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.
8.4CVSS
7.9AI Score
0.0004EPSS
8.4CVSS
7.7AI Score
0.0004EPSS
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
7.8CVSS
8AI Score
0.0004EPSS
8.8CVSS
9.3AI Score
0.001EPSS
8.2CVSS
7.7AI Score
0.0004EPSS
Memory corruption in Automotive due to integer overflow to buffer overflow while registering a new listener with shared buffer.
9.3CVSS
7.9AI Score
0.0004EPSS
Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
7.8CVSS
7.8AI Score
0.0004EPSS
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
8.2CVSS
5.5AI Score
0.001EPSS
7.5CVSS
5.6AI Score
0.001EPSS
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
7.9CVSS
8AI Score
0.001EPSS
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
7.8CVSS
8AI Score
0.0004EPSS
8.2CVSS
7.5AI Score
0.001EPSS
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
8.4CVSS
7.7AI Score
0.0004EPSS
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
8.4CVSS
7.8AI Score
0.0004EPSS
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.
8.8CVSS
8.7AI Score
0.001EPSS
Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.
8.4CVSS
8AI Score
0.0004EPSS
Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
8.2CVSS
6.5AI Score
0.001EPSS
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2CVSS
6.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5CVSS
6.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5CVSS
6.5AI Score
0.001EPSS
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
6.8CVSS
6.8AI Score
0.001EPSS
Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed.
7.5CVSS
7.4AI Score
0.001EPSS
Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.
7.5CVSS
7.4AI Score
0.001EPSS
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
7.8CVSS
7.8AI Score
0.0004EPSS
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
7.5CVSS
7.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN Host while parsing frame information.
7.5CVSS
7.5AI Score
0.001EPSS
Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.
7.5CVSS
7.5AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.001EPSS
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
8.2CVSS
7.4AI Score
0.001EPSS
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8CVSS
9.6AI Score
0.001EPSS
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5CVSS
7.6AI Score
0.001EPSS
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
9.8CVSS
9.6AI Score
0.002EPSS
8.4CVSS
8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4CVSS
8AI Score
0.0004EPSS
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4CVSS
7.7AI Score
0.0004EPSS
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4CVSS
7.9AI Score
0.0004EPSS
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
9.8CVSS
9.5AI Score
0.002EPSS
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
8.4CVSS
7.9AI Score
0.0004EPSS
8.4CVSS
7.7AI Score
0.001EPSS
Memory corruption due to untrusted pointer dereference in automotive during system call.
9.1CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
7.5CVSS
7.5AI Score
0.001EPSS