Page 2 of 69 results (0.028 seconds)

CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0

07 Apr 2025 — Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 8.5EPSS: 0%CPEs: 19EXPL: 0

07 Apr 2025 — Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0

07 Apr 2025 — Memory corruption while handling file descriptor during listener registration/de-registration. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-416: Use After Free •

CVSS: 5.5EPSS: 0%CPEs: 20EXPL: 0

07 Apr 2025 — There may be information disclosure during memory re-allocation in TZ Secure OS. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.5EPSS: 0%CPEs: 11EXPL: 0

07 Apr 2025 — Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-1220: Insufficient Granularity of Access Control •

CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 1

03 Mar 2025 — Memory corruption while calling the NPU driver APIs concurrently. msm_npu has a race condition between npu_host_unload_network and npu_host_exec_network_v2 that leads to memory corruption. • https://packetstorm.news/files/id/189958 • CWE-416: Use After Free •

CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 1

03 Mar 2025 — Transient DOS may occur while processing the country IE. • https://github.com/ladyg00se/CVE-2024-53027-WIP • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0

03 Mar 2025 — Memory corruption may occur while validating ports and channels in Audio driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-129: Improper Validation of Array Index •

CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0

03 Mar 2025 — Transient DOS during hypervisor virtual I/O operation in a virtual machine. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-126: Buffer Over-read •

CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0

03 Mar 2025 — Information disclosure while deriving keys for a session for any Widevine use case. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-285: Improper Authorization •