Transient DOS in WLAN Firmware while processing frames with missing header fields.

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

Memory corruption in WLAN HOST while receiving an WMI event from firmware.

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.

Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.

Information disclosure in Kernel due to indirect branch misprediction.

Transient DOS due to improper authorization in Modem

Memory corruption due to double free in Core while mapping HLOS address to the list.

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

Transient DOS due to reachable assertion in Modem because of invalid network configuration.

information disclosure due to cryptographic issue in Core during RPMB read request.

Assertion occurs while processing Reconfiguration message due to improper validation

Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.

Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.

Memory corruption in Graphics while importing a file.

Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.

Transient DOS due to reachable assertion in Modem during OSI decode scheduling.

Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.

Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.