Qualcomm: >> Sd 8 Gen1 5g Security Vulnerabilities
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-11-04
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-10-07
Memory corruption while processing IOCTL call for getting group info.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-09-02
Memory corruption when user provides data for FM HCI command control operations.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-09-02
Memory corruption when two threads try to map and unmap a single node simultaneously.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-09-02
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-09-02
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-02
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-09-02
Memory corruption when Alternative Frequency offset value is set to 255.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-09-02
Transient DOS while handling PS event when Program Service name length offset value is set to 255.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-09-02