CVE-2025-27053

all versions

Memory corruption during PlayReady APP usecase while processing TA commands.

7.8HIGH

CVE-2025-21482

all versions

Cryptographic issue while performing RSA PKCS padding decoding.

7.1HIGH

CVE-2024-43052

all versions

Memory corruption while processing API calls to NPU with invalid input.

7.8HIGH

CVE-2024-23385

all versions

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

7.5HIGH

CVE-2024-23359

all versions

Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network.

8.2HIGH

CVE-2024-23358

all versions

Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem.

7.5HIGH

CVE-2024-23357

all versions

Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.

6.2MEDIUM

CVE-2024-23353

all versions

Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.

7.5HIGH

CVE-2024-21461

all versions

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4HIGH

CVE-2023-33110

all versions

The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP an

7.8HIGH

CVE-2023-33033

all versions

Memory corruption in Audio during playback with speaker protection.

8.4HIGH

CVE-2023-33030

all versions

Memory corruption in HLOS while running playready use-case.

9.3CRITICAL

CVE-2023-33018

all versions

Memory corruption while using the UIM diag command to get the operators name.

7.8HIGH

CVE-2023-28551

all versions

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

7.8HIGH

CVE-2023-28550

all versions

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

7.8HIGH

CVE-2023-28546

all versions

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8HIGH

CVE-2023-22388

all versions

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

9.8CRITICAL

CVE-2023-24850

all versions

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

7.8HIGH

CVE-2023-24849

all versions

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

8.2HIGH

CVE-2023-24848

all versions

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.

8.2HIGH

CVE-2023-22385

all versions

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

8.2HIGH

CVE-2022-40521

all versions

Transient DOS due to improper authorization in Modem

7.5HIGH

CVE-2022-33264

all versions

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

7.9HIGH

CVE-2022-22076

all versions

information disclosure due to cryptographic issue in Core during RPMB read request.

7.1HIGH