CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2025-47393 – Improper Validation of Array Index in Automotive Linux OS
https://notcve.org/view.php?id=CVE-2025-47393
06 Jan 2026 — Memory corruption when accessing resources in kernel driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 113EXPL: 0CVE-2025-47346 – Out-of-bounds Write in HLOS
https://notcve.org/view.php?id=CVE-2025-47346
06 Jan 2026 — Memory corruption while processing a secure logging command in the trusted application. • https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 105EXPL: 0CVE-2025-47345 – Reusing a Nonce, Key Pair in Encryption in Automotive Platform
https://notcve.org/view.php?id=CVE-2025-47345
06 Jan 2026 — Cryptographic issue may occur while encrypting license data. • https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html • CWE-323: Reusing a Nonce, Key Pair in Encryption •
CVSS: 7.8EPSS: 0%CPEs: 76EXPL: 0CVE-2025-47329 – Release of Invalid Pointer or Reference in Android Core
https://notcve.org/view.php?id=CVE-2025-47329
24 Sep 2025 — Memory corruption while handling invalid inputs in application info setup. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html • CWE-763: Release of Invalid Pointer or Reference •
CVSS: 7.8EPSS: 0%CPEs: 54EXPL: 0CVE-2025-47315 – Use After Free in Automotive Software platform based on QNX
https://notcve.org/view.php?id=CVE-2025-47315
24 Sep 2025 — Memory corruption while handling repeated memory unmap requests from guest VM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2025-47314 – Improper Input Validation in Automotive Software platform based on QNX
https://notcve.org/view.php?id=CVE-2025-47314
24 Sep 2025 — Memory corruption while processing data sent by FE driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 54EXPL: 0CVE-2025-27077 – Use After Free in Automotive Software platform based on QNX
https://notcve.org/view.php?id=CVE-2025-27077
24 Sep 2025 — Memory corruption while processing message in guest VM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 498EXPL: 0CVE-2025-21481 – Buffer Copy Without Checking Size of Input in HLOS
https://notcve.org/view.php?id=CVE-2025-21481
24 Sep 2025 — Memory corruption while performing private key encryption in trusted application. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2024-53022 – Improper Input Validation in Automotive OS Platform
https://notcve.org/view.php?id=CVE-2024-53022
03 Mar 2025 — Memory corruption may occur during communication between primary and guest VM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49837 – Improper Validation of Array Index in Automotive OS Platform
https://notcve.org/view.php?id=CVE-2024-49837
03 Feb 2025 — Memory corruption while reading CPU state data during guest VM suspend. • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-129: Improper Validation of Array Index •