115 known vulnerabilities · sorted by CVSS score
Memory corruption while selecting the PLMN from SOR failed list.
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Memory corruption in Core while processing control functions.
Memory corruption in HLOS while running playready use-case.
Memory corruption in Core Services while executing the command for removing a single event listener.
Memory corruption due to double free in core while initializing the encryption key.
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
Memory Corruption in Core due to secure memory access by user while loading modem image.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
Memory corruption when processing cmd parameters while parsing vdev.
Memory corruption when there is failed unmap operation in GPU.
Memory corruption in Graphics while importing a file.
Memory corruption in Audio during playback with speaker protection.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.