92 matches found
CVE-2023-33027
Transient DOS in WLAN Firmware while parsing rsn ies.
CVE-2022-33278
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
CVE-2022-40507
Memory corruption due to double free in Core while mapping HLOS address to the list.
CVE-2023-28538
Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.
CVE-2022-33285
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
CVE-2023-24853
Memory Corruption in HLOS while registering for key provisioning notify.
CVE-2022-22076
information disclosure due to cryptographic issue in Core during RPMB read request.
CVE-2022-40516
Memory corruption in Core due to stack-based buffer overflow.
CVE-2023-22666
Memory Corruption in Audio while playing amrwbplus clips with modified content.
CVE-2023-28567
Memory corruption in WLAN HAL while handling command through WMI interfaces.
CVE-2023-28585
Memory corruption while loading an ELF segment in TEE Kernel.
CVE-2023-21662
Memory corruption in Core Platform while printing the response buffer in log.
CVE-2023-24852
Memory Corruption in Core due to secure memory access by user while loading modem image.
CVE-2023-21664
Memory Corruption in Core Platform while printing the response buffer in log.
CVE-2023-28564
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
CVE-2023-24850
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
CVE-2023-28549
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
CVE-2023-28558
Memory corruption in WLAN handler while processing PhyID in Tx status handler.
CVE-2023-28565
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
CVE-2023-28557
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
CVE-2023-33098
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
CVE-2022-33253
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
CVE-2022-40518
Information disclosure due to buffer overread in Core
CVE-2022-40520
Memory corruption due to stack-based buffer overflow in Core
CVE-2023-28573
Memory corruption in WLAN HAL while parsing WMI command parameters.
CVE-2023-28587
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
CVE-2023-33015
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
CVE-2022-33252
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
CVE-2023-33017
Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
CVE-2023-33024
Memory corruption while sending SMS from AP firmware.
CVE-2023-33088
Memory corruption when processing cmd parameters while parsing vdev.
CVE-2023-22667
Memory Corruption in Audio while allocating the ion buffer during the music playback.
CVE-2023-28548
Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.
CVE-2023-28586
Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
CVE-2023-28546
Memory Corruption in SPS Application while exporting public key in sorter TA.
CVE-2022-40519
Information disclosure due to buffer overread in Core
CVE-2023-33022
Memory corruption in HLOS while invoking IOCTL calls from user-space.
CVE-2023-33080
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
CVE-2023-33089
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
CVE-2022-33286
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
CVE-2023-21639
Memory corruption in Audio while processing sva_model_serializer using memory size passed by HIDL client.
CVE-2022-40517
Memory corruption in core due to stack-based buffer overflow