| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Information disclosure in IOE Firmware while handling WMI command. |
| Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked. |
| Transient DOS while parsing WPA IES, when it is passed with length more than expected size. |
| Memory corruption in SPS Application while requesting for public key in sorter TA. |
| Memory corruption in Kernel while parsing metadata. |
| Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |
| Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. |
| Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. |
| Memory corruption while processing concurrent IOCTL calls. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver. |
| Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP. |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. |
| Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE. |
| Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. |
| While processing the authentication message in UE, improper authentication may lead to information disclosure. |
| Memory corruption while playing audio file having large-sized input buffer. |