CVSS: 6.7EPSS: 0%CPEs: 58EXPL: 0CVE-2024-33053 – Use After Free in Video
https://notcve.org/view.php?id=CVE-2024-33053
02 Dec 2024 — Memory corruption when multiple threads try to unregister the CVP buffer at the same time. Corrupción de memoria cuando varios subprocesos intentan anular el registro del búfer CVP al mismo tiempo. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.0EPSS: 0%CPEs: 30EXPL: 0CVE-2024-33040 – Use After Free in Camera Driver
https://notcve.org/view.php?id=CVE-2024-33040
02 Dec 2024 — Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access. Puede ocurrir corrupción de memoria al invocar el comando de liberación redundante para liberar un búfer del espacio del usuario como condición de ejecución en el espacio del núcleo entre la liberación del búfer y el acceso al búfer. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 6.1EPSS: 0%CPEs: 53EXPL: 0CVE-2024-33037 – Buffer Over-read in Neural Processing Unit
https://notcve.org/view.php?id=CVE-2024-33037
02 Dec 2024 — Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware. La divulgación de información ya que el firmware de la NPU puede enviar un mensaje IPC no válido al controlador de la NPU ya que el controlador no valida el mensaje IPC recibido del firmware. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.7EPSS: 0%CPEs: 54EXPL: 0CVE-2024-33036 – Use of Out-of-range Pointer Offset in Camera Driver
https://notcve.org/view.php?id=CVE-2024-33036
02 Dec 2024 — Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. Corrupción de memoria al analizar paquetes de sensores en el controlador de la cámara, se utiliza una variable de espacio de usuario al asignar memoria en el kernel y analizar, lo que puede generar una asignación enorme o un acceso a memoria no válido. • https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 44EXPL: 0CVE-2024-33069 – Use After Free in WLAN Host
https://notcve.org/view.php?id=CVE-2024-33069
07 Oct 2024 — Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 120EXPL: 0CVE-2024-23369 – Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
https://notcve.org/view.php?id=CVE-2024-23369
07 Oct 2024 — Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 57EXPL: 0CVE-2023-43524 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
https://notcve.org/view.php?id=CVE-2023-43524
06 May 2024 — Memory corruption when the bandpass filter order received from AHAL is not within the expected range. Corrupción de la memoria cuando el orden del filtro de paso de banda recibido de AHAL no está dentro del rango esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 85EXPL: 0CVE-2023-43521 – Use After Free in HLOS
https://notcve.org/view.php?id=CVE-2023-43521
06 May 2024 — Memory corruption when multiple listeners are being registered with the same file descriptor. Corrupción de la memoria cuando se registran varios oyentes con el mismo descriptor de archivo. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 624EXPL: 0CVE-2023-43536 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-43536
06 Feb 2024 — Transient DOS while parse fils IE with length equal to 1. DOS transitorio mientras analiza fils IE con una longitud igual a 1. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 482EXPL: 0CVE-2023-43533 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-43533
06 Feb 2024 — Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame. DOS transitorio en el firmware WLAN cuando la longitud de la baliza recibida es menor que la longitud de la frame de la baliza ieee802.11. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •