Qualcomm ≫ Mdm9206 Firmware

An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat'

An image with a version lower than the fuse version may potentially be booted lead to improper authentication.

Initial xbl_sec revision does not have all the debug policy features and critical checks.

Buffer overwrite in the WLAN host driver by leveraging a compromised WLAN FW

Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.

Certain unprivileged processes are able to perform IOCTL calls.

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.

Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.