CVE-2024-45569

Memory corruption while parsing the ML IE due to invalid frame content.

CVE-2024-43048

Memory corruption when invalid input is passed to invoke GPU Headroom API call.

CVE-2024-33063

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.

CVE-2024-43052

Memory corruption while processing API calls to NPU with invalid input.

CVE-2024-45558

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

CVE-2025-21468

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

CVE-2024-45580

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.

CVE-2024-49843

Memory corruption while processing IOCTL from user space to handle GPU AHB bus error.

CVE-2025-21459

Transient DOS while parsing per STA profile in ML IE.

CVE-2024-49833

Memory corruption can occur in the camera when an invalid CID is used.

CVE-2024-38415

Memory corruption while handling session errors from firmware.

CVE-2024-45571

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

CVE-2024-49834

Memory corruption while power-up or power-down sequence of the camera sensor.

CVE-2024-33042

Memory corruption when Alternative Frequency offset value is set to 255.

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

CVE-2024-49839

Memory corruption during management frame processing due to mismatch in T2LM info element.

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

CVE-2024-53024

Memory corruption in display driver while detaching a device.

CVE-2024-49836

Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.

CVE-2024-49832

Memory corruption in Camera due to unusually high number of nodes passed to AXI port.

CVE-2024-53014

Memory corruption may occur while validating ports and channels in Audio driver.

CVE-2024-33043

Transient DOS while handling PS event when Program Service name length offset value is set to 255.

CVE-2024-49835

Memory corruption while reading secure file.

CVE-2024-38421

Memory corruption while processing GPU commands.

CVE-2024-38405

Transient DOS while processing the CU information from RNR IE.

CVE-2024-49845

Memory corruption during the FRS UDS generation process.

CVE-2024-49847

Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE.

CVE-2024-49844

Memory corruption while triggering commands in the PlayReady Trusted application.

CVE-2024-49846

Memory corruption while decoding of OTA messages from T3448 IE.

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

CVE-2024-49842

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

CVE-2024-49841

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

CVE-2024-53011

Information disclosure may occur due to improper permission and access controls to Video Analytics engine.

CVE-2024-53025

Transient DOS can occur while processing UCI command.

CVE-2024-45584

Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.

CVE-2024-38425

Information disclosure while sending implicit broadcast containing APP launch information.

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

CVE-2024-38424

Memory corruption during GNSS HAL process initialization.

CVE-2024-33068

Transient DOS while parsing fragments of MBSSID IE from beacon frame.

CVE-2024-38403

Transient DOS while parsing BTM ML IE when per STA profile is not included.

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

CVE-2025-21450

Cryptographic issue occurs due to use of insecure connection method while downloading.

CVE-2025-21454

Transient DOS while processing received beacon frame.

CVE-2025-27061

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

CVE-2025-21432

Memory corruption while retrieving the CBOR data from TA.

CVE-2025-21449

Transient DOS may occur while processing malformed length field in SSID IEs.

CVE-2025-27043

Memory corruption while processing manipulated payload in video firmware.

CVE-2025-27056

Memory corruption during sub-system restart while processing clean-up to free up resources.

CVE-2024-53009

Memory corruption while operating the mailbox in Automotive.