9.3CVSS
7.7AI Score
0.0004EPSS
Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP...
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos...
7.5CVSS
7.4AI Score
0.001EPSS
8.8CVSS
8.8AI Score
0.001EPSS
8.4CVSS
7.9AI Score
0.0004EPSS
Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK...
7.8CVSS
7.6AI Score
0.0004EPSS
8.2CVSS
7.4AI Score
0.001EPSS
Information disclosure in Bluetooth when an GATT packet is received due to improper input...
6.5CVSS
6.3AI Score
0.0005EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
6.2CVSS
5.3AI Score
0.0004EPSS
Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client...
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory Corruption in Data Modem while processing DMA buffer release event about CFR...
7.8CVSS
7.7AI Score
0.0004EPSS
7.1CVSS
5.5AI Score
0.0004EPSS
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next...
7.5CVSS
7.5AI Score
0.0004EPSS
8.4CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
8.2CVSS
8.1AI Score
0.0004EPSS
Transient DOS while key unwrapping process, when the given encrypted key is empty or...
7.5CVSS
7.5AI Score
0.0005EPSS
Memory corruption in Qualcomm IPC due to use after free while receiving the incoming packet and reposting...
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any...
7.8CVSS
7.7AI Score
0.0004EPSS
9.8CVSS
9.5AI Score
0.001EPSS
8.7CVSS
7.5AI Score
0.0004EPSS
6.8CVSS
6.6AI Score
0.001EPSS
Memory corruption in Audio while processing sva_model_serializer using memory size passed by HIDL...
7.8CVSS
7.8AI Score
0.0004EPSS
Information disclosure in Network Services due to buffer over-read while the device receives DNS...
8.2CVSS
7.4AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon...
7.5CVSS
7.5AI Score
0.0005EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP...
8.8CVSS
8.7AI Score
0.001EPSS
9.3CVSS
7.8AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Memory Corruption in Core due to secure memory access by user while loading modem...
8.4CVSS
7.5AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
7.8CVSS
7.7AI Score
0.0004EPSS
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux...
8.4CVSS
7.8AI Score
0.0004EPSS
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39...
7.5CVSS
7.6AI Score
0.001EPSS
8.2CVSS
7.3AI Score
0.001EPSS
Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer...
7.5CVSS
7.5AI Score
0.0005EPSS
8.4CVSS
7.7AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
9.8CVSS
9.6AI Score
0.001EPSS
7.5CVSS
7.4AI Score
0.001EPSS
The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to...
7.8CVSS
7.5AI Score
0.0004EPSS
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx...
8.4CVSS
7.7AI Score
0.0004EPSS