CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2024-45582 – Improper Validation of Array Index in Camera Driver
https://notcve.org/view.php?id=CVE-2024-45582
03 Feb 2025 — Memory corruption while validating number of devices in Camera kernel . • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2024-38411 – Use After Free in Computer Vision
https://notcve.org/view.php?id=CVE-2024-38411
03 Feb 2025 — Memory corruption while registering a buffer from user-space to kernel-space using IOCTL calls. • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 103EXPL: 0CVE-2024-38405 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2024-38405
04 Nov 2024 — Transient DOS while processing the CU information from RNR IE. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 0CVE-2024-33033 – Use After Free in ComputerVision
https://notcve.org/view.php?id=CVE-2024-33033
04 Nov 2024 — Memory corruption while processing IOCTL calls to unmap the buffers. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 6.7EPSS: 0%CPEs: 22EXPL: 0CVE-2024-33030 – Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Performance
https://notcve.org/view.php?id=CVE-2024-33030
04 Nov 2024 — Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.7EPSS: 0%CPEs: 40EXPL: 0CVE-2024-23377 – Use of Out-of-range Pointer Offset in ComputerVision
https://notcve.org/view.php?id=CVE-2024-23377
04 Nov 2024 — Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 6.7EPSS: 0%CPEs: 26EXPL: 0CVE-2024-23374 – Stack-based Buffer Overflow in Power Management IC
https://notcve.org/view.php?id=CVE-2024-23374
07 Oct 2024 — Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 120EXPL: 0CVE-2024-23369 – Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
https://notcve.org/view.php?id=CVE-2024-23369
07 Oct 2024 — Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 95EXPL: 0CVE-2024-33020 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-33020
05 Aug 2024 — Transient DOS while processing TID-to-link mapping IE elements. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.5EPSS: 0%CPEs: 25EXPL: 0CVE-2024-23350 – Reachable Assertion in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23350
05 Aug 2024 — Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-617: Reachable Assertion •