CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 1CVE-2024-38411 – Use After Free in Computer Vision
https://notcve.org/view.php?id=CVE-2024-38411
03 Feb 2025 — Memory corruption while registering a buffer from user-space to kernel-space using IOCTL calls. In the function msm_cvp_map_buf_wncc (reachable from the EVA_KMD_REGISTER_BUFFER ioctl), after cbuf is created and fully initialized, it is unconditionally added to the linked list inst->cvpwnccbufs.list. msm_cvp_map_buf_wncc then tries to add an entry for the buffer to inst->cvpwnccbufs_table. This can fail if there are already 2400 entries in the table, in which case it is necessary to unwind all initialization... • https://packetstorm.news/files/id/189612 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 0CVE-2024-33033 – Use After Free in ComputerVision
https://notcve.org/view.php?id=CVE-2024-33033
04 Nov 2024 — Memory corruption while processing IOCTL calls to unmap the buffers. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 6.7EPSS: 0%CPEs: 40EXPL: 0CVE-2024-23377 – Use of Out-of-range Pointer Offset in ComputerVision
https://notcve.org/view.php?id=CVE-2024-23377
04 Nov 2024 — Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 8.4EPSS: 0%CPEs: 444EXPL: 0CVE-2024-23373 – Use After Free in Graphics
https://notcve.org/view.php?id=CVE-2024-23373
01 Jul 2024 — Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. Corrupción de la memoria cuando falla la operación de desasignación de IOMMU, se liberan los búferes DMA y anon. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 222EXPL: 0CVE-2024-23372 – Integer Overflow or Wraparound in Graphics
https://notcve.org/view.php?id=CVE-2024-23372
01 Jul 2024 — Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size. La memoria se daña al invocar una llamada IOCTL para la asignación de memoria de la GPU y el parámetro de tamaño es mayor que el tamaño esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 686EXPL: 0CVE-2024-23368 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2024-23368
01 Jul 2024 — Memory corruption when allocating and accessing an entry in an SMEM partition. Corrupción de la memoria al asignar y acceder a una entrada en una partición SMEM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 448EXPL: 0CVE-2024-21469 – Permissions, Privileges, and Access Control issues in TZ Secure OS
https://notcve.org/view.php?id=CVE-2024-21469
01 Jul 2024 — Memory corruption when an invoke call and a TEE call are bound for the same trusted application. Corrupción de la memoria cuando una llamada de invocación y una llamada TEE están vinculadas a la misma aplicación confiable. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-264: Permissions, Privileges, and Access Controls CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 518EXPL: 0CVE-2024-21465 – Buffer Over-read in Trusted Execution Environment
https://notcve.org/view.php?id=CVE-2024-21465
01 Jul 2024 — Memory corruption while processing key blob passed by the user. Corrupción de la memoria al procesar el blob de claves pasado por el usuario. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.1EPSS: 0%CPEs: 622EXPL: 0CVE-2024-21462 – Buffer Over-read in TZ Secure OS
https://notcve.org/view.php?id=CVE-2024-21462
01 Jul 2024 — Transient DOS while loading the TA ELF file. DOS transitorio mientras se carga el archivo TA ELF. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 626EXPL: 0CVE-2024-21461 – Double Free in HLOS
https://notcve.org/view.php?id=CVE-2024-21461
01 Jul 2024 — Memory corruption while performing finish HMAC operation when context is freed by keymaster. Corrupción de la memoria al realizar la operación de finalización de HMAC cuando Keymaster libera el contexto. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-415: Double Free •