CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-38404 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-38404
03 Feb 2025 — Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem. • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43064 – Permissions, Privileges, and Access Controls issue in Automotive OS Platform
https://notcve.org/view.php?id=CVE-2024-43064
06 Jan 2025 — Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU. • https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2024-33067 – Buffer Over-read in Audio
https://notcve.org/view.php?id=CVE-2024-33067
06 Jan 2025 — Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43053 – Improper Restriction of Operations within the Bounds of a Memory Buffer in WLAN Windows Host
https://notcve.org/view.php?id=CVE-2024-43053
02 Dec 2024 — Memory corruption while invoking IOCTL calls from user space to read WLAN target diagnostic information. Corrupción de memoria al invocar llamadas IOCTL desde el espacio del usuario para leer información de diagnóstico del objetivo WLAN. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2024-43052 – Improper Input Validation in Video Analytics and Processing
https://notcve.org/view.php?id=CVE-2024-43052
02 Dec 2024 — Memory corruption while processing API calls to NPU with invalid input. Corrupción de memoria al procesar llamadas API a NPU con entrada no válida. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-43050 – Stack-based Buffer Overflow in WLAN Windows Host
https://notcve.org/view.php?id=CVE-2024-43050
02 Dec 2024 — Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver. Corrupción de memoria al invocar llamadas IOCTL desde el espacio del usuario para emitir un comando de prueba de fábrica dentro del controlador WLAN. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43049 – Improper Restriction of Operations within the Bounds of a Memory Buffer in WLAN Windows Host
https://notcve.org/view.php?id=CVE-2024-43049
02 Dec 2024 — Memory corruption while invoking IOCTL calls from user space to set generic private command inside WLAN driver. Corrupción de memoria al invocar llamadas IOCTL desde el espacio del usuario para establecer un comando privado genérico dentro del controlador WLAN. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-43048 – Stack-based Buffer Overflow in Performance
https://notcve.org/view.php?id=CVE-2024-43048
02 Dec 2024 — Memory corruption when invalid input is passed to invoke GPU Headroom API call. Corrupción de memoria cuando se pasa una entrada no válida para invocar la llamada GPU Headroom API. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-33063 – Integer Overflow or Wraparound in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-33063
02 Dec 2024 — Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present. DOS transitorio mientras se analiza el ML IE cuando una baliza con una longitud de información común del ML IE es mayor que el ML IE dentro del cual está presente este elemento. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.4EPSS: 0%CPEs: 46EXPL: 0CVE-2024-33056 – Buffer Over-read in MProc
https://notcve.org/view.php?id=CVE-2024-33056
02 Dec 2024 — Memory corruption when allocating and accessing an entry in an SMEM partition continuously. Corrupción de memoria al asignar y acceder a una entrada en una partición SMEM de forma continua. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-126: Buffer Over-read •