CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21477 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-21477
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. DOS transitorio mientras se analiza un cuadro de medición de tiempo fino (FTM) 802.11az protegido. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-21476 – Improper Input Validation in Secure Processor
https://notcve.org/view.php?id=CVE-2024-21476
Memory corruption when the channel ID passed by user is not validated and further used. Corrupción de la memoria cuando el ID del canal pasado por el usuario no se valida ni se utiliza más. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2024-21475 – Use of Out-of-range Pointer Offset in Video
https://notcve.org/view.php?id=CVE-2024-21475
Memory corruption when the payload received from firmware is not as per the expected protocol size. Corrupción de la memoria cuando el payload recibido del firmware no corresponde al tamaño de protocolo esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 8.4EPSS: 0%CPEs: 11EXPL: 0CVE-2024-21471 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-21471
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux. Corrupción de la memoria cuando falla la desasignación de IOMMU de un búfer de GPU en Linux. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-43531 – Access of Uninitialized Pointer in SPS Applications
https://notcve.org/view.php?id=CVE-2023-43531
Memory corruption while verifying the serialized header when the key pairs are generated. Corrupción de la memoria al verificar el encabezado serializado cuando se generan los pares de claves. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-824: Access of Uninitialized Pointer •