Memory corruption in DSP Services during a remote call from HLOS to DSP.

Memory corruption while using the UIM diag command to get the operators name.

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

Memory corruption while loading an ELF segment in TEE Kernel.

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

Memory corruption in Audio while processing the VOC packet data from ADSP.

Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.

Information disclosure in WLAN HAL while handling command through WMI interfaces.

Information disclosure in WLAN HAL while handling the WMI state info command.

Information disclosure in IOE Firmware while handling WMI command.

Cryptographic issue in HLOS during key management.

Information Disclosure in WLAN Host when processing WMI event command.

Memory Corruption in Core due to secure memory access by user while loading modem image.

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

Transient DOS in WLAN Firmware while parsing rsn ies.

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.