CVE-2022-25747

Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message

CVE-2022-40518

Information disclosure due to buffer overread in Core

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in Core

CVE-2022-25726

Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet

CVE-2022-33258

Information disclosure due to buffer over-read in modem while reading configuration parameters.

CVE-2022-40505

Information disclosure due to buffer over-read in Modem while parsing DNS hostname.

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

CVE-2022-25737

Information disclosure in modem due to missing NULL check while reading packets received from local network

CVE-2022-33259

Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.

CVE-2022-33211

memory corruption in modem due to improper check while calculating size of serialized CoAP message

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

CVE-2022-25745

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

CVE-2022-33287

Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

CVE-2022-40519

Information disclosure due to buffer overread in Core

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

CVE-2022-40517

Memory corruption in core due to stack-based buffer overflow