Page 10 of 124 results (0.001 seconds)

CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-416: Use After Free •

CVSS: 8.4EPSS: 0%CPEs: 19EXPL: 0

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-284: Improper Access Control •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-190: Integer Overflow or Wraparound •