CVSS: 7.8EPSS: 0%CPEs: 52EXPL: 0CVE-2024-49843 – Improper Validation of Array Index in Graphics_Linux
https://notcve.org/view.php?id=CVE-2024-49843
03 Feb 2025 — Memory corruption while processing IOCTL from user space to handle GPU AHB bus error. • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2024-45582 – Improper Validation of Array Index in Camera Driver
https://notcve.org/view.php?id=CVE-2024-45582
03 Feb 2025 — Memory corruption while validating number of devices in Camera kernel . • https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 82EXPL: 0CVE-2024-38421 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-38421
04 Nov 2024 — Memory corruption while processing GPU commands. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 0CVE-2024-33033 – Use After Free in ComputerVision
https://notcve.org/view.php?id=CVE-2024-33033
04 Nov 2024 — Memory corruption while processing IOCTL calls to unmap the buffers. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 6.7EPSS: 0%CPEs: 40EXPL: 0CVE-2024-23377 – Use of Out-of-range Pointer Offset in ComputerVision
https://notcve.org/view.php?id=CVE-2024-23377
04 Nov 2024 — Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 120EXPL: 0CVE-2024-23369 – Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
https://notcve.org/view.php?id=CVE-2024-23369
07 Oct 2024 — Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •