| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. |
| Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
| Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation. |
| Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
| Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment. |
| Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone. |
| Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD. |
| Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory. |
| Memory corruption due to double free in core while initializing the encryption key. |
| Information disclosure in Trusted Execution Environment due to buffer over-read while processing metadata verification requests. |
| Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call |
| Information disclosure in modem due to buffer over-red while performing checksum of packet received |
| Denial of service in modem due to missing null check while processing TCP or UDP packets from server |
| Denial of service in modem due to null pointer dereference while processing DNS packets |
| Information disclosure in modem due to buffer over read in dns client due to missing length check |
| Information disclosure in modem due to improper check of IP type while processing DNS server query |
| Memory corruption in modem due to improper length check while copying into memory |
| Information disclosure in modem due to buffer over-read while processing response from DNS server |
| Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet |
| Information disclosure in Bluetooth driver due to buffer over-read while reading l2cap length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables |
