Qualcomm: >> Sw5100p Security Vulnerabilities
In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-08
Memory corruption in Trusted Execution Environment while calling service API with invalid address.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-08
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-08-08
Memory corruption in RIL while trying to send apdu packet.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-08
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-08
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-08
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
CVSS Score
9.3
EPSS Score
0.001
Published
2023-08-08
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
CVSS Score
7.7
EPSS Score
0.0
Published
2023-08-08
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-08-08
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
CVSS Score
6.8
EPSS Score
0.001
Published
2023-07-04