Transient DOS due to buffer over-read in WLAN Host while parsing frame information.

Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.

Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

Information disclosure due to buffer over-read in WLAN while parsing NMF frame.

Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.

Memory corruption in Audio due to use of out-of-range pointer offset while Initiating a voice call session from user space with invalid session id.

Memory corruption due to improper access control in Qualcomm IPC.

Memory corruption due to configuration weakness in modem wile sending command to write protected files.

Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.

Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets.

Memory corruption due to use after free in trusted application environment.

Information disclosure in modem due to buffer over-red while performing checksum of packet received

Denial of service in modem due to missing null check while processing TCP or UDP packets from server

Denial of service in modem due to missing null check while processing IP packets with padding

Denial of service in modem due to null pointer dereference while processing DNS packets

Information disclosure in modem due to buffer over read in dns client due to missing length check

Memory corruption in modem due to improper length check while copying into memory

Information disclosure in modem due to buffer over-read while processing response from DNS server

Memory corruption due to stack-based buffer overflow in Core