information disclosure due to cryptographic issue in Core during RPMB read request.
7.1CVSS
5.2AI Score
0.0004EPSS
Memory corruption due to double free in core while initializing the encryption key.
9.3CVSS
7.8AI Score
0.0004EPSS
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
7.9CVSS
8AI Score
0.001EPSS
Memory corruption due to double free in Core while mapping HLOS address to the list.
8.4CVSS
7.8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
7.1CVSS
5.4AI Score
0.0004EPSS
Memory corruption due to improper access control in kernel while processing a mapping request from root process.
7.8CVSS
7.6AI Score
0.0004EPSS
Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
6.2CVSS
5.4AI Score
0.0004EPSS
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
8.4CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
9.8CVSS
9.3AI Score
0.001EPSS
9.8CVSS
9.3AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.001EPSS
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
8.2CVSS
7.3AI Score
0.001EPSS
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
7.8CVSS
7.5AI Score
0.0004EPSS
Memory Corruption in Core due to secure memory access by user while loading modem image.
8.4CVSS
7.5AI Score
0.0004EPSS
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.
7.8CVSS
7.8AI Score
0.0004EPSS
8.2CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.
7.8CVSS
7.9AI Score
0.0004EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
8.8CVSS
8.8AI Score
0.0004EPSS
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
6.5CVSS
6.4AI Score
0.0004EPSS
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
7.8CVSS
7.9AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
9.3CVSS
7.8AI Score
0.0004EPSS
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
9.3CVSS
7.7AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.7AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
9.3CVSS
7.8AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
7.5CVSS
7.5AI Score
0.0004EPSS
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
7.5CVSS
7.6AI Score
0.0005EPSS
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
7.5CVSS
7.5AI Score
0.0005EPSS
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
8.4CVSS
7.7AI Score
0.0004EPSS
Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.
8.4CVSS
7.9AI Score
0.0004EPSS