CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 1CVE-2025-21424 – Use After Free in NPU
https://notcve.org/view.php?id=CVE-2025-21424
03 Mar 2025 — Memory corruption while calling the NPU driver APIs concurrently. msm_npu has a race condition between npu_host_unload_network and npu_host_exec_network_v2 that leads to memory corruption. • https://packetstorm.news/files/id/189958 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53030 – Improper Input Validation in Automotive OS Platform
https://notcve.org/view.php?id=CVE-2024-53030
03 Mar 2025 — Memory corruption while processing input message passed from FE driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2024-53027 – Buffer Copy Without Checking Size of Input in WLAN Host
https://notcve.org/view.php?id=CVE-2024-53027
03 Mar 2025 — Transient DOS may occur while processing the country IE. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2024-53025 – Integer Overflow or Wraparound in BT Controller
https://notcve.org/view.php?id=CVE-2024-53025
03 Mar 2025 — Transient DOS can occur while processing UCI command. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2024-53024 – NULL Pointer Dereference in Display
https://notcve.org/view.php?id=CVE-2024-53024
03 Mar 2025 — Memory corruption in display driver while detaching a device. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-53023 – Use After Free in Automotive Android OS
https://notcve.org/view.php?id=CVE-2024-53023
03 Mar 2025 — Memory corruption may occur while accessing a variable during extended back to back tests. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2024-53022 – Improper Input Validation in Automotive OS Platform
https://notcve.org/view.php?id=CVE-2024-53022
03 Mar 2025 — Memory corruption may occur during communication between primary and guest VM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2024-53014 – Improper Validation of Array Index in Audio
https://notcve.org/view.php?id=CVE-2024-53014
03 Mar 2025 — Memory corruption may occur while validating ports and channels in Audio driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-49836 – Improper Validation of Array Index in Camera
https://notcve.org/view.php?id=CVE-2024-49836
03 Mar 2025 — Memory corruption may occur during the synchronization of the camera`s frame processing pipeline. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45580 – Use After Free in DSP Service
https://notcve.org/view.php?id=CVE-2024-45580
03 Mar 2025 — Memory corruption while handling multuple IOCTL calls from userspace for remote invocation. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-416: Use After Free •