Qualcomm: >> Sa8540p Firmware Security Vulnerabilities
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-10-07
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
Cryptographic issue while parsing RSA keys in COBR format.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-09-02
Memory corruption while releasing shared resources in MinkSocket listener thread.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-09-02
memory corruption when an invalid firehose patch command is invoked.
CVSS Score
6.8
EPSS Score
0.001
Published
2024-09-02
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05
Memory corruption while processing IOCTL call to set metainfo.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05