Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
8.2CVSS
7.4AI Score
0.001EPSS
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8CVSS
9.6AI Score
0.001EPSS
Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.
9.8CVSS
9.5AI Score
0.002EPSS
7.5CVSS
7.5AI Score
0.001EPSS
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4CVSS
7.9AI Score
0.0004EPSS
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
9.8CVSS
9.5AI Score
0.002EPSS
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1CVSS
7AI Score
0.0004EPSS
6.8CVSS
6.6AI Score
0.001EPSS
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
9.8CVSS
9.4AI Score
0.001EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
7.5CVSS
7.5AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.001EPSS
8.4CVSS
7.7AI Score
0.0004EPSS
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
8.4CVSS
7.7AI Score
0.0004EPSS
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
7.8CVSS
7.7AI Score
0.0004EPSS
9.8CVSS
9.3AI Score
0.001EPSS
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
7.8CVSS
7.5AI Score
0.0004EPSS
9.8CVSS
9.3AI Score
0.001EPSS
8.4CVSS
7.6AI Score
0.0004EPSS
Memory Corruption in Audio while allocating the ion buffer during the music playback.
8.4CVSS
7.7AI Score
0.0004EPSS
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
8.2CVSS
7.3AI Score
0.001EPSS
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
7.8CVSS
7.5AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
7.8CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
7.5CVSS
7.5AI Score
0.001EPSS
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
7.5CVSS
7.5AI Score
0.001EPSS
9.3CVSS
7.8AI Score
0.0004EPSS
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.
7.8CVSS
7.8AI Score
0.0004EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
5.5CVSS
5.5AI Score
0.0004EPSS
7.1CVSS
6.8AI Score
0.0004EPSS
Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.
7.8CVSS
7.9AI Score
0.0004EPSS
Memory corruption in Audio while processing IIR config data from AFE calibration block.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in Audio while processing the calibration data returned from ACDB loader.
7.8CVSS
7.8AI Score
0.0004EPSS
Transient DOS in Automotive OS due to improper authentication to the secure IO calls.
7.1CVSS
5.6AI Score
0.0004EPSS
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.
7.8CVSS
6.8AI Score
0.0004EPSS
Memory corruption in Audio when memory map command is executed consecutively in ADSP.
7.8CVSS
7.9AI Score
0.0004EPSS
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
7.8CVSS
7.7AI Score
0.0004EPSS