CVE-2025-27036
Information disclosure when Video engine escape input data is less than expected minimum size.
CVE-2025-27034
Memory corruption while selecting the PLMN from SOR failed list.
CVE-2025-27033
Information disclosure while running video usecase having rogue firmware.
CVE-2025-27032
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
CVE-2025-27030
information disclosure while invoking calibration data from user space to update firmware size.
CVE-2025-21488
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
CVE-2025-21487
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
CVE-2025-21484
Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.
CVE-2025-21483
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
CVE-2025-21482
Cryptographic issue while performing RSA PKCS padding decoding.
CVE-2025-21481
Memory corruption while performing private key encryption in trusted application.
CVE-2025-21476
Memory corruption when passing parameters to the Trusted Virtual Machine during the handshake.
CVE-2025-47324
Information disclosure while accessing and modifying the PIB file of a remote device via powerline.
CVE-2025-27076
Memory corruption while processing simultaneous requests via escape path.
CVE-2025-27075
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.
CVE-2025-27073
Transient DOS while creating NDP instance.
CVE-2025-27072
Information disclosure while processing a packet at EAVB BE side with invalid header length.
CVE-2025-27071
Memory corruption while processing specific files in Powerline Communication Firmware.
CVE-2025-27069
Memory corruption while processing DDI command calls.
CVE-2025-27068
Memory corruption while processing an IOCTL command with an arbitrary address.