CVE-2025-47404

all versions

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

6.5MEDIUM

CVE-2025-47398

all versions

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.

7.8HIGH

CVE-2025-27061

all versions

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmwar

7.8HIGH

CVE-2025-27043

all versions

Memory corruption while processing manipulated payload in video firmware.

7.8HIGH

CVE-2025-27042

all versions

Memory corruption while processing video packets received from video firmware.

7.8HIGH

CVE-2025-21454

all versions

Transient DOS while processing received beacon frame.

7.5HIGH

CVE-2025-21449

all versions

Transient DOS may occur while processing malformed length field in SSID IEs.

7.5HIGH

CVE-2025-21427

all versions

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

8.2HIGH

CVE-2025-21467

all versions

Memory corruption while reading the FW response from the shared queue.

7.8HIGH

CVE-2025-21453

all versions

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures oc

7.8HIGH

CVE-2024-43047

all versions

Memory corruption while maintaining memory maps of HLOS memory.

7.8HIGH

CVE-2024-33060

all versions

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4HIGH

CVE-2024-33052

all versions

Memory corruption when user provides data for FM HCI command control operations.

7.8HIGH

CVE-2023-43551

all versions

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immedia

9.1CRITICAL

CVE-2023-43545

all versions

Memory corruption when more scan frequency list or channels are sent from the user space.

6.7MEDIUM

CVE-2024-21475

all versions

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8HIGH

CVE-2024-21471

all versions

Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.

8.4HIGH

CVE-2023-43528

all versions

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than

6.1MEDIUM

CVE-2023-43527

all versions

Information disclosure while parsing dts header atom in Video.

6.8MEDIUM

CVE-2024-21468

all versions

Memory corruption when there is failed unmap operation in GPU.

8.4HIGH

CVE-2023-33023

all versions

Memory corruption while processing finish_sign command to pass a rsp buffer.

8.4HIGH

CVE-2023-28547

all versions

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4HIGH

CVE-2023-43548

all versions

Memory corruption while parsing qcp clip with invalid chunk data size.

7.3HIGH

CVE-2023-33066

all versions

Memory corruption in Audio while processing RT proxy port register driver.

8.4HIGH

CVE-2023-28578

all versions

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CRITICAL