CVE-2025-21427

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

CVE-2025-21446

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

CVE-2025-21444

Memory corruption while copying the result to the transmission queue in EMAC.

CVE-2025-21445

Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host.

CVE-2025-21456

Memory corruption while processing IOCTL command when multiple threads are called to map/unmap buffer concurrently.

CVE-2025-27065

Transient DOS while processing a frame with malformed shared-key descriptor.

CVE-2025-27073

Transient DOS while creating NDP instance.

CVE-2025-21458

Memory corruption when IOCTL interface is called to map and unmap buffers simultaneously.

CVE-2025-21481

Memory corruption while performing private key encryption in trusted application.

CVE-2025-27072

Information disclosure while processing a packet at EAVB BE side with invalid header length.

CVE-2025-27077

Memory corruption while processing message in guest VM.

CVE-2025-47314

Memory corruption while processing data sent by FE driver.

CVE-2025-47315

Memory corruption while handling repeated memory unmap requests from guest VM.

CVE-2025-47329

Memory corruption while handling invalid inputs in application info setup.