CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43062 – Use After Free in Camera Linux
https://notcve.org/view.php?id=CVE-2024-43062
03 Mar 2025 — Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43061 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2024-43061
03 Mar 2025 — Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43060 – Use of Out-of-range Pointer Offset in Automotive Audio
https://notcve.org/view.php?id=CVE-2024-43060
03 Mar 2025 — Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43059 – Use After Free in Automotive Multimedia
https://notcve.org/view.php?id=CVE-2024-43059
03 Mar 2025 — Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2024-43057 – Use After Free in MProc
https://notcve.org/view.php?id=CVE-2024-43057
03 Mar 2025 — Memory corruption while processing command in Glink linux. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0CVE-2024-43056 – Buffer Over-read in Hypervisor
https://notcve.org/view.php?id=CVE-2024-43056
03 Mar 2025 — Transient DOS during hypervisor virtual I/O operation in a virtual machine. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43055 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Camera_Linux
https://notcve.org/view.php?id=CVE-2024-43055
03 Mar 2025 — Memory corruption while processing camera use case IOCTL call. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-43051 – Improper Authorization in SPS-HLOS
https://notcve.org/view.php?id=CVE-2024-43051
03 Mar 2025 — Information disclosure while deriving keys for a session for any Widevine use case. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-285: Improper Authorization •
CVSS: 5.4EPSS: 0%CPEs: 19EXPL: 0CVE-2024-38426 – Improper Authentication in Modem
https://notcve.org/view.php?id=CVE-2024-38426
03 Mar 2025 — While processing the authentication message in UE, improper authentication may lead to information disclosure. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 52EXPL: 0CVE-2024-49843 – Improper Validation of Array Index in Graphics_Linux
https://notcve.org/view.php?id=CVE-2024-49843
03 Feb 2025 — Memory corruption while processing IOCTL from user space to handle GPU AHB bus error. • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-129: Improper Validation of Array Index •