19 matches found
CVE-2025-21424
Memory corruption while calling the NPU driver APIs concurrently.
CVE-2024-38402
Memory corruption while processing IOCTL call for getting group info.
CVE-2025-21468
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
CVE-2024-53027
Transient DOS may occur while processing the country IE.
CVE-2024-38415
Memory corruption while handling session errors from firmware.
CVE-2025-21453
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
CVE-2024-53024
Memory corruption in display driver while detaching a device.
CVE-2024-33050
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2024-53014
Memory corruption may occur while validating ports and channels in Audio driver.
CVE-2024-38423
Memory corruption while processing GPU page table switch.
CVE-2024-33051
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-23385
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
CVE-2025-21422
Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.
CVE-2025-21454
Transient DOS while processing received beacon frame.
CVE-2025-27061
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
CVE-2025-21432
Memory corruption while retrieving the CBOR data from TA.
CVE-2025-21446
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
CVE-2025-21449
Transient DOS may occur while processing malformed length field in SSID IEs.
CVE-2025-27042
Memory corruption while processing video packets received from video firmware.