CVE-2025-27070

all versions

Memory corruption while performing encryption and decryption commands.

7.8HIGH

CVE-2025-27054

all versions

Memory corruption while processing a malformed license file during reboot.

7.8HIGH

CVE-2025-27053

all versions

Memory corruption during PlayReady APP usecase while processing TA commands.

7.8HIGH

CVE-2025-27032

all versions

memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.

7.8HIGH

CVE-2025-21487

all versions

Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than th

8.2HIGH

CVE-2025-21483

all versions

Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.

9.8CRITICAL

CVE-2025-21481

all versions

Memory corruption while performing private key encryption in trusted application.

7.8HIGH

CVE-2025-27066

all versions

Transient DOS while processing an ANQP message.

7.5HIGH

CVE-2025-21465

all versions

Information disclosure while processing the hash segment in an MBN file.

6.5MEDIUM

CVE-2025-21464

all versions

Information disclosure while reading data from an image using specified offset and size parameters.

6.5MEDIUM

CVE-2025-27061

all versions

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmwar

7.8HIGH

CVE-2025-27057

all versions

Transient DOS while handling beacon frames with invalid IE header length.

7.5HIGH

CVE-2025-27052

all versions

Memory corruption while processing data packets in diag received from Unix clients.

7.8HIGH

CVE-2025-27043

all versions

Memory corruption while processing manipulated payload in video firmware.

7.8HIGH

CVE-2025-27042

all versions

Memory corruption while processing video packets received from video firmware.

7.8HIGH

CVE-2025-21446

all versions

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.

7.5HIGH

CVE-2025-21433

all versions

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2MEDIUM

CVE-2025-21432

all versions

Memory corruption while retrieving the CBOR data from TA.

7.8HIGH

CVE-2025-21427

all versions

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

8.2HIGH

CVE-2025-21422

all versions

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

7.1HIGH

CVE-2024-53009

all versions

Memory corruption while operating the mailbox in Automotive.

5.3MEDIUM

CVE-2025-21463

all versions

Transient DOS while processing the EHT operation IE in the received beacon frame.

7.5HIGH

CVE-2024-53026

all versions

Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.

8.2HIGH

CVE-2024-53021

all versions

Information disclosure may occur while processing goodbye RTCP packet from network.

8.2HIGH

CVE-2024-53020

all versions

Information disclosure may occur while decoding the RTP packet with invalid header extension from network.

8.2HIGH

CVE-2025-21468

all versions

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null

7.8HIGH

CVE-2025-21459

all versions

Transient DOS while parsing per STA profile in ML IE.

7.5HIGH

CVE-2025-21453

all versions

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures oc

7.8HIGH

CVE-2024-49845

all versions

Memory corruption during the FRS UDS generation process.

7.8HIGH

CVE-2024-49844

all versions

Memory corruption while triggering commands in the PlayReady Trusted application.

7.8HIGH

CVE-2024-49842

all versions

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

7.8HIGH

CVE-2024-49841

all versions

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

7.8HIGH

CVE-2024-49835

all versions

Memory corruption while reading secure file.

7.8HIGH

CVE-2025-21448

all versions

Transient DOS may occur while parsing SSID in action frames.

7.5HIGH

CVE-2025-21434

all versions

Transient DOS may occur while parsing EHT operation IE or EHT capability IE.

7.5HIGH

CVE-2025-21430

all versions

Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.

7.5HIGH

CVE-2024-45551

all versions

Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification fai

6.2MEDIUM

CVE-2024-45549

all versions

Information disclosure while creating MQ channels.

7.7HIGH

CVE-2024-43065

all versions

Cryptographic issues while generating an asymmetric key pair for RKP use cases.

7.1HIGH

CVE-2024-43046

all versions

There may be information disclosure during memory re-allocation in TZ Secure OS.

5.5MEDIUM

CVE-2024-33058

all versions

Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.

7.5HIGH

CVE-2024-53027

all versions

Transient DOS may occur while processing the country IE.

7.5HIGH

CVE-2024-53024

all versions

Memory corruption in display driver while detaching a device.

7.8HIGH

CVE-2024-49839

all versions

Memory corruption during management frame processing due to mismatch in T2LM info element.

8.2HIGH

CVE-2024-49838

all versions

Information disclosure while parsing the OCI IE with invalid length.

8.2HIGH

CVE-2024-49834

all versions

Memory corruption while power-up or power-down sequence of the camera sensor.

7.8HIGH

CVE-2024-45571

all versions

Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.

7.8HIGH

CVE-2024-45569

all versions

Memory corruption while parsing the ML IE due to invalid frame content.

9.8CRITICAL