CVE-2022-33288 — CVSS 9.3 (critical): Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection…
CVE-2022-33307 — CVSS 8.4 (high): Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
CVE-2023-21630 — CVSS 8.4 (high): Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.
CVE-2023-21669 — CVSS 8.2 (high): Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.
CVE-2022-25726 — CVSS 8.2 (high): Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
CVE-2022-33287 — CVSS 8.2 (high): Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.
CVE-2022-25713 — CVSS 7.8 (high): Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.
CVE-2022-40504 — CVSS 7.5 (high): Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
CVE-2022-40508 — CVSS 7.5 (high): Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
CVE-2022-40529 — CVSS 7.1 (high): Memory corruption due to improper access control in kernel while processing a mapping request from root process.
CVE-2022-33302 — CVSS 6.8 (medium): Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
CVE-2022-33289 — CVSS 6.8 (medium): Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
CVE-2022-33281 — CVSS 6.7 (medium): Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames.
CVE-2022-33226 — CVSS 6.7 (medium): Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client…
CVE-2023-28571 — CVSS 6.1 (medium): Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
CVE-2022-33296 — CVSS 5.9 (medium): Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.
CVE-2022-33303 — CVSS 5.5 (medium): Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager…