KNOB is CVE-2019-9506, which is part of the August 2019 patch level for Android 7+. As both FP2 and FP3(+) are on 2021 patch levels right now, I would assume both devices to be not vulnerable. The CVE number is even explicitly mentioned in the Fairphone OS 19.11.2 release notes.
I can’t find any information on BIAS / CVE-2020-10135 in the security bulletins.
EDIT: two other CVEs from BIAS (CVE-2020-26555 and CVE-2020-26558) are in the June 2021 patch level, which the FP2/3(+) have received as well. This page mentions AOSP, rather than the SoC vendors, as affected which means the update wouldn’t rely on Qualcomm support.
The SweynTooth page does not make any mention of vulnerabilities in devices with a Qualcomm SoC & Bluetooth chip.