70 matches found
CVE-2025-21479
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
CVE-2025-27038
Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.
CVE-2025-21480
Memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
CVE-2024-45569
Memory corruption while parsing the ML IE due to invalid frame content.
CVE-2025-21424
Memory corruption while calling the NPU driver APIs concurrently.
CVE-2024-43048
Memory corruption when invalid input is passed to invoke GPU Headroom API call.
CVE-2024-38402
Memory corruption while processing IOCTL call for getting group info.
CVE-2024-43052
Memory corruption while processing API calls to NPU with invalid input.
CVE-2024-33063
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.
CVE-2024-45558
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
CVE-2025-21468
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
CVE-2024-49843
Memory corruption while processing IOCTL from user space to handle GPU AHB bus error.
CVE-2025-21459
Transient DOS while parsing per STA profile in ML IE.
CVE-2024-33060
Memory corruption when two threads try to map and unmap a single node simultaneously.
CVE-2024-49833
Memory corruption can occur in the camera when an invalid CID is used.
CVE-2024-38415
Memory corruption while handling session errors from firmware.
CVE-2024-45571
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.
CVE-2024-49834
Memory corruption while power-up or power-down sequence of the camera sensor.
CVE-2024-53027
Transient DOS may occur while processing the country IE.
CVE-2024-49838
Information disclosure while parsing the OCI IE with invalid length.
CVE-2024-33042
Memory corruption when Alternative Frequency offset value is set to 255.
CVE-2024-45582
Memory corruption while validating number of devices in Camera kernel .
CVE-2024-49839
Memory corruption during management frame processing due to mismatch in T2LM info element.
CVE-2025-21453
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
CVE-2024-53024
Memory corruption in display driver while detaching a device.
CVE-2024-33048
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2024-33052
Memory corruption when user provides data for FM HCI command control operations.
CVE-2024-33050
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVE-2024-45553
Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.
CVE-2024-53014
Memory corruption may occur while validating ports and channels in Audio driver.
CVE-2024-33045
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2024-33057
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVE-2024-49835
Memory corruption while reading secure file.
CVE-2024-33043
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
CVE-2024-38422
Memory corruption while processing voice packet with arbitrary data received from ADSP.
CVE-2024-33038
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
CVE-2024-38421
Memory corruption while processing GPU commands.
CVE-2024-33054
Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine.
CVE-2024-49845
Memory corruption during the FRS UDS generation process.
CVE-2024-49847
Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE.
CVE-2024-38405
Transient DOS while processing the CU information from RNR IE.
CVE-2024-49844
Memory corruption while triggering commands in the PlayReady Trusted application.
CVE-2024-33056
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
CVE-2024-33051
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVE-2024-38426
While processing the authentication message in UE, improper authentication may lead to information disclosure.
CVE-2024-53011
Information disclosure may occur due to improper permission and access controls to Video Analytics engine.
CVE-2024-23369
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVE-2024-53025
Transient DOS can occur while processing UCI command.
CVE-2024-38404
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.
CVE-2024-45584
Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.