CVE-2022-22060

Assertion occurs while processing Reconfiguration message due to improper validation

CVE-2022-33251

Transient DOS due to reachable assertion in Modem because of invalid network configuration.

CVE-2022-33270

Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.

CVE-2023-21646

Transient DOS in Modem while processing invalid System Information Block 1.

CVE-2022-33284

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.

CVE-2022-40518

Information disclosure due to buffer overread in Core

CVE-2022-33230

Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

CVE-2023-33042

Transient DOS in Modem after RRC Setup message is received.

CVE-2023-21644

Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.

CVE-2022-40519

Information disclosure due to buffer overread in Core

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

CVE-2022-33286

Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.