CVSS: 7.8EPSS: 0%CPEs: 52EXPL: 0CVE-2024-49843 – Improper Validation of Array Index in Graphics_Linux
https://notcve.org/view.php?id=CVE-2024-49843
03 Feb 2025 — Memory corruption while processing IOCTL from user space to handle GPU AHB bus error. • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 82EXPL: 0CVE-2024-38421 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-38421
04 Nov 2024 — Memory corruption while processing GPU commands. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 103EXPL: 0CVE-2024-38405 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2024-38405
04 Nov 2024 — Transient DOS while processing the CU information from RNR IE. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.7EPSS: 0%CPEs: 40EXPL: 0CVE-2024-23377 – Use of Out-of-range Pointer Offset in ComputerVision
https://notcve.org/view.php?id=CVE-2024-23377
04 Nov 2024 — Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 95EXPL: 0CVE-2024-33020 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-33020
05 Aug 2024 — Transient DOS while processing TID-to-link mapping IE elements. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 69EXPL: 0CVE-2024-23383 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-23383
05 Aug 2024 — Memory corruption when kernel driver attempts to trigger hardware fences. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 70EXPL: 0CVE-2024-23381 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-23381
05 Aug 2024 — Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 212EXPL: 0CVE-2024-23380 – Use After Free in Graphics
https://notcve.org/view.php?id=CVE-2024-23380
01 Jul 2024 — Memory corruption while handling user packets during VBO bind operation. Corrupción de la memoria al manejar paquetes de usuario durante la operación de enlace VBO. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 444EXPL: 0CVE-2024-23373 – Use After Free in Graphics
https://notcve.org/view.php?id=CVE-2024-23373
01 Jul 2024 — Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. Corrupción de la memoria cuando falla la operación de desasignación de IOMMU, se liberan los búferes DMA y anon. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 222EXPL: 0CVE-2024-23372 – Integer Overflow or Wraparound in Graphics
https://notcve.org/view.php?id=CVE-2024-23372
01 Jul 2024 — Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size. La memoria se daña al invocar una llamada IOCTL para la asignación de memoria de la GPU y el parámetro de tamaño es mayor que el tamaño esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-190: Integer Overflow or Wraparound •