47 known vulnerabilities · sorted by CVSS score
Memory corruption due to improper validation of array index in Multi-mode call processor.
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.
Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.
Memory Corruption in Audio while allocating the ion buffer during the music playback.
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
Memory corruption in Graphics while processing user packets for command submission.
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
Memory corruption in modem due to use of out of range pointer offset while processing qmi msg
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
Memory corruption in WLAN HAL while handling command through WMI interfaces.
Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.
Memory corruption while calling the NPU driver APIs concurrently.
Memory corruption in display driver while detaching a device.
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
Memory corruption due to configuration weakness in modem wile sending command to write protected files.