CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-23351 – Improper Access Control in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-23351
Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions. Se puede acceder a la corrupción de la memoria cuando la GPU se registra más allá del último rango protegido a través de envíos LPAC. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-284: Improper Access Control •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-21480 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
https://notcve.org/view.php?id=CVE-2024-21480
Memory corruption while playing audio file having large-sized input buffer. Corrupción de la memoria al reproducir archivos de audio con un búfer de entrada de gran tamaño. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21477 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-21477
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. DOS transitorio mientras se analiza un cuadro de medición de tiempo fino (FTM) 802.11az protegido. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-21476 – Improper Input Validation in Secure Processor
https://notcve.org/view.php?id=CVE-2024-21476
Memory corruption when the channel ID passed by user is not validated and further used. Corrupción de la memoria cuando el ID del canal pasado por el usuario no se valida ni se utiliza más. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2024-21475 – Use of Out-of-range Pointer Offset in Video
https://notcve.org/view.php?id=CVE-2024-21475
Memory corruption when the payload received from firmware is not as per the expected protocol size. Corrupción de la memoria cuando el payload recibido del firmware no corresponde al tamaño de protocolo esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •