Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4CVSS
7.7AI Score
0.0004EPSS
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4CVSS
7.9AI Score
0.0004EPSS
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
9.8CVSS
9.5AI Score
0.002EPSS
6.2CVSS
5.4AI Score
0.0004EPSS
Information disclosure in Network Services due to buffer over-read while the device receives DNS response.
8.2CVSS
7.4AI Score
0.001EPSS
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1CVSS
7AI Score
0.0004EPSS
Memory corruption in Trusted Execution Environment while calling service API with invalid address.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
8.4CVSS
7.9AI Score
0.0004EPSS
6.8CVSS
6.6AI Score
0.001EPSS
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
9.8CVSS
9.4AI Score
0.001EPSS
Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request.
7.8CVSS
7.5AI Score
0.0004EPSS
Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.
7.8CVSS
7.5AI Score
0.0004EPSS
Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony.
7.8CVSS
7.6AI Score
0.0004EPSS
Memory Corruption due to improper validation of array index in Linux while updating adn record.
7.8CVSS
7.5AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.
7.8CVSS
7.7AI Score
0.0004EPSS
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
6.5CVSS
6.3AI Score
0.001EPSS
7.8CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.
7.8CVSS
7.6AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
8.4CVSS
7.7AI Score
0.0004EPSS
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
8.4CVSS
7.7AI Score
0.0004EPSS
Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
6.5CVSS
6.4AI Score
0.0004EPSS
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
7.8CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
9.8CVSS
9.3AI Score
0.001EPSS
Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.
7.8CVSS
7.5AI Score
0.0004EPSS
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
7.8CVSS
7.5AI Score
0.0004EPSS
9.8CVSS
9.3AI Score
0.001EPSS
8.4CVSS
7.6AI Score
0.0004EPSS
Memory Corruption in Audio while allocating the ion buffer during the music playback.
8.4CVSS
7.7AI Score
0.0004EPSS
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
8.2CVSS
7.3AI Score
0.001EPSS
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
7.8CVSS
7.5AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.001EPSS
7.8CVSS
7.6AI Score
0.0005EPSS
8.4CVSS
7.8AI Score
0.0004EPSS
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
9.1CVSS
7.5AI Score
0.001EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
7.8CVSS
7.9AI Score
0.0004EPSS
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
6.1CVSS
5.3AI Score
0.0004EPSS
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.
7.8CVSS
7.5AI Score
0.0004EPSS