CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-21468 – Out-of-bounds Write in Computer Vision
https://notcve.org/view.php?id=CVE-2025-21468
06 May 2025 — Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. Corrupción de memoria al leer la respuesta del FW, cuando el tamaño del búfer es modificado por el FW mientras el controlador usa este tamaño para escribir un carácter nulo al final del búfer. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-21467 – Out-of-bounds Write in Computer Vision
https://notcve.org/view.php?id=CVE-2025-21467
06 May 2025 — Memory corruption while reading the FW response from the shared queue. Corrupción de memoria al leer la respuesta de FW desde la cola compartida. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 35EXPL: 0CVE-2025-21453 – Use After Free in GPS HLOS Driver
https://notcve.org/view.php?id=CVE-2025-21453
06 May 2025 — Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. Corrupción de memoria durante el procesamiento de una estructura de datos, cuando se accede a un iterador luego de haberlo eliminado, ocurren fallas potenciales. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2024-49844 – Improper Input Validation in Automotive
https://notcve.org/view.php?id=CVE-2024-49844
06 May 2025 — Memory corruption while triggering commands in the PlayReady Trusted application. Corrupción de memoria al activar comandos en la aplicación PlayReady Trusted. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2024-49842 – Improper Access Control in Hypervisor
https://notcve.org/view.php?id=CVE-2024-49842
06 May 2025 — Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. Corrupción de memoria durante la asignación de memoria al espacio de dirección de VM protegido debido a restricciones de API incorrectas. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2024-49841 – Detection of Error Condition Without Action in Hypervisor
https://notcve.org/view.php?id=CVE-2024-49841
06 May 2025 — Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. Corrupción de memoria durante la asignación de memoria a una máquina virtual periférica sin cabeza debido a un manejo incorrecto del código de error. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-390: Detection of Error Condition Without Action •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2024-49835 – Out-of-bounds Write in SPS Applications
https://notcve.org/view.php?id=CVE-2024-49835
06 May 2025 — Memory corruption while reading secure file. Corrupción de memoria al leer un archivo seguro. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-787: Out-of-bounds Write •
CVSS: 6.6EPSS: 0%CPEs: 3EXPL: 0CVE-2024-45562 – Use After Free in HLOS
https://notcve.org/view.php?id=CVE-2024-45562
06 May 2025 — Memory corruption during concurrent access to server info object due to unprotected critical field. Corrupción de memoria durante el acceso simultáneo al objeto de información del servidor debido a un campo crítico desprotegido. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2025-21448 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2025-21448
07 Apr 2025 — Transient DOS may occur while parsing SSID in action frames. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2025-21430 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2025-21430
07 Apr 2025 — Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html • CWE-126: Buffer Over-read •