Memory corruption due to improper validation of array index in Multi-mode call processor.
9.8CVSS
9.6AI Score
0.002EPSS
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
9.3CVSS
7AI Score
0.0004EPSS
8.2CVSS
7.5AI Score
0.001EPSS
7.5CVSS
7.4AI Score
0.001EPSS
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
8.4CVSS
7.8AI Score
0.0004EPSS
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.
8.8CVSS
8.7AI Score
0.001EPSS
Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
8.2CVSS
6.5AI Score
0.001EPSS
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2CVSS
6.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5CVSS
6.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5CVSS
6.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
7.5CVSS
7.5AI Score
0.001EPSS
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
7.5CVSS
7.6AI Score
0.001EPSS
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8CVSS
9.6AI Score
0.001EPSS
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5CVSS
7.6AI Score
0.001EPSS
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
9.8CVSS
9.6AI Score
0.002EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
8.4CVSS
8AI Score
0.0004EPSS
6.8CVSS
5.5AI Score
0.0004EPSS
6.8CVSS
5.5AI Score
0.0004EPSS
8.4CVSS
8AI Score
0.0004EPSS
Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
7.5CVSS
7.4AI Score
0.001EPSS
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4CVSS
8AI Score
0.0004EPSS
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4CVSS
7.7AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1CVSS
7AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3CVSS
7.5AI Score
0.0004EPSS
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
7.7CVSS
6.7AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.7AI Score
0.0004EPSS
8.4CVSS
7.6AI Score
0.0004EPSS