Qualcomm QAMSRV1H Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*
part: o version: - update: *
| Vendor | Qualcomm (4194a0de-9926-556d-a143-7609c2315dd6) |
|---|---|
| Product | Qamsrv1H Firmware (9f1aad27-6ea7-5d1e-925f-0adabfd92322) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-24082 |
vulnerable | 2026-06-03 15:16:51.464333 |
Use After Free in Automotive GPU
HIGH (7.8)
Memory Corruption when copying data from a freed source while executing performance counter deselect operation.
Published: 2026-05-04T16:43:15.644Z
Updated: 2026-05-05T03:56:33.147Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-21385 |
vulnerable | 2026-06-03 15:15:50.712331 |
Integer Overflow or Wraparound in Graphics
HIGH (7.8)
Memory corruption while using alignments for memory allocation.
Published: 2026-03-02T16:53:59.406Z
Updated: 2026-03-04T04:55:16.033Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-59600 |
vulnerable | 2026-06-03 15:06:25.553068 |
Buffer Over-read in Graphics
HIGH (7.8)
Memory Corruption when adding user-supplied data without checking available buffer space.
Published: 2026-03-02T16:53:56.962Z
Updated: 2026-03-03T04:56:13.893Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47404 |
vulnerable | 2026-06-03 15:01:32.554890 |
Buffer Copy Without Checking Size of Input in Automotive Audio
MEDIUM (6.5)
Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.
Published: 2026-05-04T16:43:10.032Z
Updated: 2026-05-04T17:18:50.464Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47403 |
vulnerable | 2026-06-03 15:01:32.486110 |
Buffer Over-read in WLAN Firmware
MEDIUM (6.5)
Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.
Published: 2026-05-04T16:43:08.911Z
Updated: 2026-05-04T17:17:18.716Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47402 |
vulnerable | 2026-06-03 15:01:32.386191 |
Buffer Over-read in WLAN Firmware
MEDIUM (6.5)
Transient DOS when processing a received frame with an excessively large authentication information element.
Published: 2026-02-02T15:20:47.013Z
Updated: 2026-02-02T15:51:28.129Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47401 |
vulnerable | 2026-06-03 15:01:32.234243 |
Buffer Over-read in WLAN HAL
MEDIUM (6.5)
Transient DOS when processing target power rate tables during channel configuration.
Published: 2026-05-04T16:43:07.614Z
Updated: 2026-05-04T19:49:09.440Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47398 |
vulnerable | 2026-06-03 15:01:32.147199 |
Use After Free in Graphics
HIGH (7.8)
Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.
Published: 2026-02-02T15:20:44.851Z
Updated: 2026-02-26T15:04:34.366Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47397 |
vulnerable | 2026-06-03 15:01:32.037970 |
Improper Release of Memory Before Removing Last Reference in Graphics
HIGH (7.8)
Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.
Published: 2026-02-02T15:20:43.667Z
Updated: 2026-02-26T15:04:34.889Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47393 |
vulnerable | 2026-06-03 15:01:32.009600 |
Improper Validation of Array Index in Automotive Linux OS
HIGH (7.8)
Memory corruption when accessing resources in kernel driver.
Published: 2026-01-06T22:48:46.639Z
Updated: 2026-01-07T16:15:22.711Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47391 |
vulnerable | 2026-06-03 15:01:31.917490 |
Stack-based Buffer Overflow in Camera Driver
HIGH (7.8)
Memory corruption while processing a frame request from user.
Published: 2026-04-06T15:33:42.784Z
Updated: 2026-04-07T03:56:06.071Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47389 |
vulnerable | 2026-06-03 15:01:31.897915 |
Buffer Copy Without Checking Size of Input in Automotive Platform
HIGH (7.8)
Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.
Published: 2026-04-06T15:33:40.431Z
Updated: 2026-04-07T03:55:45.795Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47386 |
vulnerable | 2026-06-03 15:01:31.753093 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
Published: 2026-03-02T16:53:55.829Z
Updated: 2026-03-03T04:56:09.300Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47385 |
vulnerable | 2026-06-03 15:01:31.744897 |
Improper Access Control for Register Interface in SCE-Mink
HIGH (7.8)
Memory Corruption when accessing trusted execution environment without proper privilege check.
Published: 2026-03-02T16:53:54.702Z
Updated: 2026-03-03T04:56:10.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47382 |
vulnerable | 2026-06-03 15:01:31.486443 |
Incorrect Authorization in Boot
HIGH (7.8)
Memory corruption while loading an invalid firmware in boot loader.
Published: 2025-12-18T05:29:11.983Z
Updated: 2025-12-18T15:00:16.777Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47381 |
vulnerable | 2026-06-03 15:01:31.477690 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.
Published: 2026-03-02T16:53:51.087Z
Updated: 2026-03-03T04:56:11.700Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47379 |
vulnerable | 2026-06-03 15:01:31.462322 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources.
Published: 2026-03-02T16:53:49.967Z
Updated: 2026-03-03T04:56:12.806Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47378 |
vulnerable | 2026-06-03 15:01:31.448264 |
Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS
HIGH (7.1)
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
Published: 2026-03-02T16:53:48.873Z
Updated: 2026-03-03T04:56:20.784Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47377 |
vulnerable | 2026-06-03 15:01:31.436253 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.
Published: 2026-03-02T16:53:47.804Z
Updated: 2026-03-03T04:56:16.078Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47376 |
vulnerable | 2026-06-03 15:01:31.418208 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.
Published: 2026-03-02T16:53:46.764Z
Updated: 2026-03-03T04:56:17.201Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47375 |
vulnerable | 2026-06-03 15:01:31.377475 |
Use After Free in Automotive Audio
HIGH (7.8)
Memory corruption while handling different IOCTL calls from the user-space simultaneously.
Published: 2026-03-02T16:53:45.678Z
Updated: 2026-03-03T04:56:21.896Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47373 |
vulnerable | 2026-06-03 15:01:31.200556 |
Out-of-bounds Write in Automotive
HIGH (7.8)
Memory Corruption when accessing buffers with invalid length during TA invocation.
Published: 2026-03-02T16:53:44.535Z
Updated: 2026-03-02T19:09:28.558Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47372 |
vulnerable | 2026-06-03 15:01:31.129952 |
Buffer Copy Without Checking Size of Input in Boot
CRITICAL (9)
Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
Published: 2025-12-18T05:29:10.324Z
Updated: 2025-12-18T15:00:24.730Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47370 |
vulnerable | 2026-06-03 15:01:30.944791 |
Reachable Assertion in BT Controller
MEDIUM (6.5)
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
Published: 2025-11-04T03:19:26.256Z
Updated: 2025-11-04T19:00:52.629Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47366 |
vulnerable | 2026-06-03 15:01:30.849829 |
Exposed Dangerous Method or Function in HLOS
HIGH (7.1)
Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.
Published: 2026-02-02T15:20:42.495Z
Updated: 2026-02-26T15:04:35.430Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47365 |
vulnerable | 2026-06-03 15:01:30.791492 |
Integer Overflow or Wraparound in Automotive Platform
HIGH (7.8)
Memory corruption while processing large input data from a remote source via a communication interface.
Published: 2025-11-04T03:19:22.474Z
Updated: 2026-02-26T17:47:29.940Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47364 |
vulnerable | 2026-06-03 15:01:30.787025 |
Integer Overflow or Wraparound in Automotive
MEDIUM (6.8)
Memory corruption while calculating offset from partition start point.
Published: 2026-02-02T15:20:41.354Z
Updated: 2026-02-26T15:04:35.706Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47363 |
vulnerable | 2026-06-03 15:01:30.782001 |
Integer Overflow or Wraparound in Automotive
MEDIUM (6.8)
Memory corruption when calculating oversized partition sizes without proper checks.
Published: 2026-02-02T15:20:40.227Z
Updated: 2026-02-26T15:04:35.970Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47362 |
vulnerable | 2026-06-03 15:01:30.778232 |
Buffer Over-read in Automotive Software platform based on QNX
MEDIUM (6.1)
Information disclosure while processing message from client with invalid payload.
Published: 2025-11-04T03:19:21.202Z
Updated: 2025-11-04T19:18:27.877Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47361 |
vulnerable | 2026-06-03 15:01:30.774333 |
Improper Validation of Array Index in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption when triggering a subsystem crash with an out-of-range identifier.
Published: 2025-11-04T03:19:19.924Z
Updated: 2026-02-26T17:47:30.397Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47360 |
vulnerable | 2026-06-03 15:01:30.761168 |
Stack-based Buffer Overflow in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while processing client message during device management.
Published: 2025-11-04T03:19:18.581Z
Updated: 2026-02-26T17:47:30.773Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47357 |
vulnerable | 2026-06-03 15:01:30.690085 |
Missing Authentication for Critical Function in SMSS
HIGH (8)
Information Disclosure when a user-level driver performs QFPROM read or write operations on Fuse regions.
Published: 2025-11-04T03:19:17.319Z
Updated: 2025-11-04T19:18:49.323Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47353 |
vulnerable | 2026-06-03 15:01:30.676455 |
Exposed Dangerous Method or Function in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while processing request sent from GVM.
Published: 2025-11-04T03:19:16.035Z
Updated: 2026-02-26T17:47:31.130Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47348 |
vulnerable | 2026-06-03 15:01:30.562655 |
Use of Uninitialized Variable in HLOS
HIGH (7.8)
Memory corruption while processing identity credential operations in the trusted application.
Published: 2026-01-06T22:48:41.474Z
Updated: 2026-01-07T16:15:48.841Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47347 |
vulnerable | 2026-06-03 15:01:30.533675 |
Stack-based Buffer Overflow in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while processing control commands in the virtual memory management interface.
Published: 2025-10-09T03:18:11.938Z
Updated: 2026-02-26T17:48:04.013Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47346 |
vulnerable | 2026-06-03 15:01:30.525530 |
Out-of-bounds Write in HLOS
HIGH (7.8)
Memory corruption while processing a secure logging command in the trusted application.
Published: 2026-01-06T22:48:40.524Z
Updated: 2026-01-07T16:15:53.578Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47345 |
vulnerable | 2026-06-03 15:01:30.477021 |
Reusing a Nonce, Key Pair in Encryption in Automotive Platform
HIGH (8.4)
Cryptographic issue may occur while encrypting license data.
Published: 2026-01-06T22:48:39.381Z
Updated: 2026-01-07T16:15:58.638Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47339 |
vulnerable | 2026-06-03 15:01:30.356096 |
Use After Free in HLOS
HIGH (7.8)
Memory corruption while deinitializing a HDCP session.
Published: 2026-01-06T22:48:36.574Z
Updated: 2026-01-07T16:16:14.715Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47334 |
vulnerable | 2026-06-03 15:01:30.111493 |
Buffer Copy Without Checking Size of Input in Camera Driver
MEDIUM (6.7)
Memory corruption while processing shared command buffer packet between camera userspace and kernel.
Published: 2026-01-06T22:48:32.703Z
Updated: 2026-01-07T16:16:37.507Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47333 |
vulnerable | 2026-06-03 15:01:30.078137 |
Use After Free in HLOS
MEDIUM (6.6)
Memory corruption while handling buffer mapping operations in the cryptographic driver.
Published: 2026-01-06T22:48:31.727Z
Updated: 2026-01-07T16:16:43.267Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47331 |
vulnerable | 2026-06-03 15:01:30.044826 |
Buffer Over-read in Video
MEDIUM (6.1)
Information disclosure while processing a firmware event.
Published: 2026-01-06T22:48:29.721Z
Updated: 2026-01-07T16:16:53.290Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47330 |
vulnerable | 2026-06-03 15:01:29.880628 |
Buffer Over-read in Video
MEDIUM (5.5)
Transient DOS while parsing video packets received from the video firmware.
Published: 2026-01-06T22:48:28.547Z
Updated: 2026-01-07T16:16:58.348Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47323 |
vulnerable | 2026-06-03 15:01:29.516774 |
Integer Overflow or Wraparound in Audio
HIGH (7.8)
Memory corruption while routing GPR packets between user and root when handling large data packet.
Published: 2025-12-18T05:29:04.760Z
Updated: 2025-12-18T15:00:49.821Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47322 |
vulnerable | 2026-06-03 15:01:29.499761 |
Use After Free in Automotive Linux OS
HIGH (7.8)
Memory corruption while handling IOCTL calls to set mode.
Published: 2025-12-18T05:29:02.931Z
Updated: 2025-12-18T15:00:58.256Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47321 |
vulnerable | 2026-06-03 15:01:29.483035 |
Buffer Copy Without Checking Size of Input in Core Services
HIGH (7.8)
Memory corruption while copying packets received from unix clients.
Published: 2025-12-18T05:29:01.171Z
Updated: 2025-12-18T15:01:09.655Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47320 |
vulnerable | 2026-06-03 15:01:29.362901 |
Out-of-bounds Write in Audio
HIGH (7.8)
Memory corruption while processing MFC channel configuration during music playback.
Published: 2025-12-18T05:28:59.413Z
Updated: 2025-12-18T15:01:17.744Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47319 |
vulnerable | 2026-06-03 15:01:29.280984 |
Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS
MEDIUM (6.7)
Information disclosure while exposing internal TA-to-TA communication APIs to HLOS
Published: 2025-12-18T05:28:57.427Z
Updated: 2025-12-18T15:01:25.325Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47318 |
vulnerable | 2026-06-03 15:01:29.100865 |
Buffer Over-read in BT Controller
HIGH (7.5)
Transient DOS while parsing the EPTM test control message to get the test pattern.
Published: 2025-09-24T15:33:51.163Z
Updated: 2025-09-24T17:28:16.793Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47315 |
vulnerable | 2026-06-03 15:01:28.869437 |
Use After Free in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while handling repeated memory unmap requests from guest VM.
Published: 2025-09-24T15:33:47.312Z
Updated: 2026-02-26T17:48:10.659Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47314 |
vulnerable | 2026-06-03 15:01:28.819307 |
Improper Input Validation in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while processing data sent by FE driver.
Published: 2025-09-24T15:33:46.107Z
Updated: 2026-02-26T17:48:11.196Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27077 |
vulnerable | 2026-06-03 15:00:11.452547 |
Use After Free in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while processing message in guest VM.
Published: 2025-09-24T15:33:44.799Z
Updated: 2026-02-26T17:48:11.733Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27073 |
vulnerable | 2026-06-03 15:00:11.318006 |
Reachable Assertion in WLAN Firmware
HIGH (7.5)
Transient DOS while creating NDP instance.
Published: 2025-08-06T07:26:09.724Z
Updated: 2025-08-06T13:33:47.104Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27072 |
vulnerable | 2026-06-03 15:00:11.308826 |
Buffer Copy Without Checking Size of Input in Automotive Vehicle Networks
MEDIUM (5.5)
Information disclosure while processing a packet at EAVB BE side with invalid header length.
Published: 2025-08-06T07:26:08.625Z
Updated: 2025-08-06T13:34:16.946Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27070 |
vulnerable | 2026-06-03 15:00:11.232225 |
Out-of-bounds Write in Windows Compute
HIGH (7.8)
Memory corruption while performing encryption and decryption commands.
Published: 2025-11-04T03:19:12.122Z
Updated: 2026-02-26T17:47:32.101Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27066 |
vulnerable | 2026-06-03 15:00:11.134359 |
Reachable Assertion in WLAN Firmware
HIGH (7.5)
Transient DOS while processing an ANQP message.
Published: 2025-08-06T07:26:03.160Z
Updated: 2025-08-06T13:36:36.865Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27065 |
vulnerable | 2026-06-03 15:00:10.985413 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS while processing a frame with malformed shared-key descriptor.
Published: 2025-08-06T07:26:01.770Z
Updated: 2025-08-06T15:37:02.799Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27062 |
vulnerable | 2026-06-03 15:00:10.890661 |
Improper Access Control in Automotive Multimedia
HIGH (7.8)
Memory corruption while handling client exceptions, allowing unauthorized channel access.
Published: 2025-08-06T07:26:00.568Z
Updated: 2025-08-06T15:37:22.461Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27061 |
vulnerable | 2026-06-03 15:00:10.735133 |
Out-of-bounds Write in Video
HIGH (7.8)
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.
Published: 2025-07-08T12:49:21.840Z
Updated: 2025-07-08T13:15:25.173Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27057 |
vulnerable | 2026-06-03 15:00:10.645643 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while handling beacon frames with invalid IE header length.
Published: 2025-07-08T12:49:18.686Z
Updated: 2025-07-08T13:15:58.087Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27054 |
vulnerable | 2026-06-03 15:00:10.517106 |
Out-of-bounds Write in Display
HIGH (7.8)
Memory corruption while processing a malformed license file during reboot.
Published: 2025-10-09T03:18:03.164Z
Updated: 2026-02-26T17:48:07.760Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27053 |
vulnerable | 2026-06-03 15:00:10.282179 |
Incorrect Calculation of Buffer Size in HLOS
HIGH (7.8)
Memory corruption during PlayReady APP usecase while processing TA commands.
Published: 2025-10-09T03:18:00.779Z
Updated: 2026-02-26T17:48:08.266Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27052 |
vulnerable | 2026-06-03 15:00:10.192663 |
Buffer Copy Without Checking Size of Input in Core Services
HIGH (7.8)
Memory corruption while processing data packets in diag received from Unix clients.
Published: 2025-07-08T12:49:14.697Z
Updated: 2025-07-08T13:16:51.373Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27043 |
vulnerable | 2026-06-03 15:00:10.039033 |
Buffer Copy Without Checking Size of Input in Video
HIGH (7.8)
Memory corruption while processing manipulated payload in video firmware.
Published: 2025-07-08T12:49:06.668Z
Updated: 2025-07-08T14:04:18.866Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27042 |
vulnerable | 2026-06-03 15:00:09.825890 |
Incorrect Calculation of Buffer Size in Video
HIGH (7.8)
Memory corruption while processing video packets received from video firmware.
Published: 2025-07-08T12:49:04.998Z
Updated: 2025-07-08T14:16:03.369Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-27032 |
vulnerable | 2026-06-03 15:00:09.307148 |
Improper Access Control Applied to Mirrored or Aliased Memory Regions in Hypervisor
HIGH (7.8)
memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.
Published: 2025-09-24T15:33:38.574Z
Updated: 2026-02-26T17:48:13.128Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21487 |
vulnerable | 2026-06-03 14:59:22.297461 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
Published: 2025-09-24T15:33:34.551Z
Updated: 2025-09-25T15:49:14.163Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21483 |
vulnerable | 2026-06-03 14:59:22.176271 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Data Network Stack & Connectivity
CRITICAL (9.8)
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
Published: 2025-09-24T15:33:31.586Z
Updated: 2026-02-26T17:48:13.763Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21481 |
vulnerable | 2026-06-03 14:59:21.949676 |
Buffer Copy Without Checking Size of Input in HLOS
HIGH (7.8)
Memory corruption while performing private key encryption in trusted application.
Published: 2025-09-24T15:33:27.834Z
Updated: 2026-02-26T17:48:14.912Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21465 |
vulnerable | 2026-06-03 14:59:21.669530 |
Out-of-bounds Read in Core
MEDIUM (6.5)
Information disclosure while processing the hash segment in an MBN file.
Published: 2025-08-06T07:25:55.226Z
Updated: 2025-08-06T19:26:20.064Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21464 |
vulnerable | 2026-06-03 14:59:21.578536 |
Out-of-bounds Read in Core
MEDIUM (6.5)
Information disclosure while reading data from an image using specified offset and size parameters.
Published: 2025-08-06T07:25:53.752Z
Updated: 2025-08-06T19:25:57.162Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21463 |
vulnerable | 2026-06-03 14:59:21.494185 |
Buffer Over-read in WLAN Host Communication
HIGH (7.5)
Transient DOS while processing the EHT operation IE in the received beacon frame.
Published: 2025-06-03T05:52:58.605Z
Updated: 2025-06-03T15:10:22.762Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21460 |
vulnerable | 2026-06-03 14:59:21.381642 |
Improper Input Validation in Automotive Software platform based on QNX
HIGH (7.8)
Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously.
Published: 2025-05-06T08:32:29.215Z
Updated: 2026-02-26T18:28:55.525Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21459 |
vulnerable | 2026-06-03 14:59:21.374145 |
Buffer Over-read in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing per STA profile in ML IE.
Published: 2025-05-06T08:32:27.901Z
Updated: 2025-05-06T15:38:26.887Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21453 |
vulnerable | 2026-06-03 14:59:21.214096 |
Use After Free in GPS HLOS Driver
HIGH (7.8)
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
Published: 2025-05-06T08:32:26.299Z
Updated: 2026-02-26T18:28:55.702Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21448 |
vulnerable | 2026-06-03 14:59:21.036923 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS may occur while parsing SSID in action frames.
Published: 2025-04-07T10:16:15.565Z
Updated: 2025-04-07T14:03:06.045Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21446 |
vulnerable | 2026-06-03 14:59:20.915017 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests.
Published: 2025-07-08T12:48:57.211Z
Updated: 2025-07-08T14:44:26.389Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21445 |
vulnerable | 2026-06-03 14:59:20.855133 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Data HLOS - QX
HIGH (7.8)
Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host.
Published: 2025-07-08T12:48:55.613Z
Updated: 2025-07-08T14:57:19.549Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21444 |
vulnerable | 2026-06-03 14:59:20.853027 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Data HLOS - QX
HIGH (7.8)
Memory corruption while copying the result to the transmission queue in EMAC.
Published: 2025-07-08T12:48:54.255Z
Updated: 2026-02-26T18:27:48.714Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21443 |
vulnerable | 2026-06-03 14:59:20.850552 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Automotive Vehicle Networks
HIGH (7.8)
Memory corruption while processing message content in eAVB.
Published: 2025-04-07T10:16:12.644Z
Updated: 2026-02-26T18:28:47.052Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21442 |
vulnerable | 2026-06-03 14:59:20.848108 |
Integer Overflow to Buffer Overflow in Automotive Vehicle Networks
HIGH (7.8)
Memory corruption while transmitting packet mapping information with invalid header payload size.
Published: 2025-04-07T10:16:11.331Z
Updated: 2026-02-26T18:28:47.689Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21437 |
vulnerable | 2026-06-03 14:59:20.783571 |
Use After Free in Automotive Linux OS
HIGH (7.8)
Memory corruption while processing memory map or unmap IOCTL operations simultaneously.
Published: 2025-04-07T10:16:04.807Z
Updated: 2026-02-26T18:28:49.885Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21434 |
vulnerable | 2026-06-03 14:59:20.634553 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS may occur while parsing EHT operation IE or EHT capability IE.
Published: 2025-04-07T10:16:00.794Z
Updated: 2025-04-07T14:48:58.277Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21433 |
vulnerable | 2026-06-03 14:59:20.570054 |
NULL Pointer Dereference in SPS-HLOS
MEDIUM (6.2)
Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.
Published: 2025-07-08T12:48:52.630Z
Updated: 2025-07-08T16:10:56.037Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21432 |
vulnerable | 2026-06-03 14:59:20.465767 |
Double Free in SPS-HLOS
HIGH (7.8)
Memory corruption while retrieving the CBOR data from TA.
Published: 2025-07-08T12:48:50.667Z
Updated: 2026-02-26T18:27:48.873Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21431 |
vulnerable | 2026-06-03 14:59:20.446690 |
Time-of-check Time-of-use (TOCTOU) Race Condition in Automotive OS Platform
MEDIUM (5.5)
Information disclosure may be there when a guest VM is connected.
Published: 2025-04-07T10:15:59.444Z
Updated: 2025-04-07T14:58:05.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21430 |
vulnerable | 2026-06-03 14:59:20.087095 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session.
Published: 2025-04-07T10:15:58.168Z
Updated: 2025-04-07T15:20:35.291Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21425 |
vulnerable | 2026-06-03 14:59:19.759109 |
Improper Access Control in Automotive Linux OS
HIGH (7.3)
Memory corruption may occur due top improper access control in HAB process.
Published: 2025-04-07T10:15:53.976Z
Updated: 2026-02-26T18:28:51.468Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21424 |
vulnerable | 2026-06-03 14:59:19.543098 |
Use After Free in NPU
HIGH (7.8)
Memory corruption while calling the NPU driver APIs concurrently.
Published: 2025-03-03T10:07:50.316Z
Updated: 2026-02-26T19:09:47.896Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-21422 |
vulnerable | 2026-06-03 14:59:19.146231 |
Cryptographic Issues in Automotive
HIGH (7.1)
Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.
Published: 2025-07-08T12:48:46.294Z
Updated: 2026-02-26T18:27:49.050Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53032 |
vulnerable | 2026-06-03 14:57:39.223051 |
Time-of-check Time-of-use (TOCTOU) Race Condition in Automotive OS Platform
HIGH (7.8)
Memory corruption may occur in keyboard virtual device due to guest VM interaction.
Published: 2025-03-03T10:07:46.637Z
Updated: 2026-02-26T19:09:48.429Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53031 |
vulnerable | 2026-06-03 14:57:39.219839 |
Improper Input Validation in Automotive OS Platform
HIGH (7.8)
Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.
Published: 2025-03-03T10:07:45.524Z
Updated: 2026-02-26T19:09:48.564Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53030 |
vulnerable | 2026-06-03 14:57:39.216335 |
Improper Input Validation in Automotive OS Platform
HIGH (7.8)
Memory corruption while processing input message passed from FE driver.
Published: 2025-03-03T10:07:44.376Z
Updated: 2026-02-26T19:09:48.697Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53029 |
vulnerable | 2026-06-03 14:57:39.213890 |
Improper Input Validation in Automotive OS Platform
HIGH (7.8)
Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.
Published: 2025-03-03T10:07:43.190Z
Updated: 2026-02-26T19:09:48.829Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53028 |
vulnerable | 2026-06-03 14:57:39.210950 |
Time-of-check Time-of-use (TOCTOU) Race Condition in Automotive Vehicle Networks
HIGH (7.8)
Memory corruption may occur while processing message from frontend during allocation.
Published: 2025-03-03T10:07:42.051Z
Updated: 2026-02-26T19:09:48.984Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53027 |
vulnerable | 2026-06-03 14:57:39.146099 |
Buffer Copy Without Checking Size of Input in WLAN Host
HIGH (7.5)
Transient DOS may occur while processing the country IE.
Published: 2025-03-03T10:07:40.914Z
Updated: 2025-03-03T13:05:06.738Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53026 |
vulnerable | 2026-06-03 14:57:39.026660 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
Published: 2025-06-03T05:52:57.455Z
Updated: 2025-06-03T15:11:13.353Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53024 |
vulnerable | 2026-06-03 14:57:38.990887 |
NULL Pointer Dereference in Display
HIGH (7.8)
Memory corruption in display driver while detaching a device.
Published: 2025-03-03T10:07:38.609Z
Updated: 2026-02-26T19:09:49.149Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53023 |
vulnerable | 2026-06-03 14:57:38.872095 |
Use After Free in Automotive Android OS
HIGH (7.8)
Memory corruption may occur while accessing a variable during extended back to back tests.
Published: 2025-03-03T10:07:37.488Z
Updated: 2026-02-26T19:09:49.321Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53022 |
vulnerable | 2026-06-03 14:57:38.868934 |
Improper Input Validation in Automotive OS Platform
HIGH (7.8)
Memory corruption may occur during communication between primary and guest VM.
Published: 2025-03-03T10:07:36.347Z
Updated: 2026-02-26T19:09:49.491Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53021 |
vulnerable | 2026-06-03 14:57:38.856535 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur while processing goodbye RTCP packet from network.
Published: 2025-06-03T05:52:55.940Z
Updated: 2025-06-03T15:10:54.652Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53020 |
vulnerable | 2026-06-03 14:57:38.765921 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Published: 2025-06-03T05:52:54.550Z
Updated: 2025-06-03T14:49:32.785Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53014 |
vulnerable | 2026-06-03 14:57:38.456652 |
Improper Validation of Array Index in Audio
HIGH (7.8)
Memory corruption may occur while validating ports and channels in Audio driver.
Published: 2025-03-03T10:07:34.984Z
Updated: 2026-02-26T19:09:49.776Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53012 |
vulnerable | 2026-06-03 14:57:38.324390 |
Improper Input Validation in Automotive OS Platform
HIGH (7.8)
Memory corruption may occur due to improper input validation in clock device.
Published: 2025-03-03T10:07:33.651Z
Updated: 2026-02-26T19:09:49.958Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53010 |
vulnerable | 2026-06-03 14:57:38.194130 |
Improper Access Control in Core
HIGH (7.8)
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
Published: 2025-06-03T05:52:46.186Z
Updated: 2025-06-03T13:34:12.254Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-53009 |
vulnerable | 2026-06-03 14:57:37.979978 |
Improper Validation of Array Index in Automotive Autonomy
MEDIUM (5.3)
Memory corruption while operating the mailbox in Automotive.
Published: 2025-07-08T12:48:44.614Z
Updated: 2025-07-08T16:11:19.907Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49848 |
vulnerable | 2026-06-03 14:57:14.219021 |
Use After Free in DSP Service
MEDIUM (6.7)
Memory corruption while processing multiple IOCTL calls from HLOS to DSP.
Published: 2025-04-07T10:15:50.191Z
Updated: 2026-02-26T18:28:52.687Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49845 |
vulnerable | 2026-06-03 14:57:14.145756 |
Improper Input Validation in HLOS
HIGH (7.8)
Memory corruption during the FRS UDS generation process.
Published: 2025-05-06T08:32:22.347Z
Updated: 2026-02-26T18:28:56.037Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49844 |
vulnerable | 2026-06-03 14:57:14.112194 |
Improper Input Validation in Automotive
HIGH (7.8)
Memory corruption while triggering commands in the PlayReady Trusted application.
Published: 2025-05-06T08:32:21.132Z
Updated: 2026-02-26T18:28:56.400Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49842 |
vulnerable | 2026-06-03 14:57:14.027948 |
Improper Access Control in Hypervisor
HIGH (7.8)
Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.
Published: 2025-05-06T08:32:19.898Z
Updated: 2026-02-26T18:28:56.722Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49841 |
vulnerable | 2026-06-03 14:57:13.967484 |
Detection of Error Condition Without Action in Hypervisor
HIGH (7.8)
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.
Published: 2025-05-06T08:32:18.628Z
Updated: 2026-02-26T18:28:57.069Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49839 |
vulnerable | 2026-06-03 14:57:13.872486 |
Buffer Over-read in WLAN Host Cmn
HIGH (8.2)
Memory corruption during management frame processing due to mismatch in T2LM info element.
Published: 2025-02-03T16:51:39.200Z
Updated: 2025-02-03T17:31:49.479Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49838 |
vulnerable | 2026-06-03 14:57:13.763795 |
Buffer Over-read in WLAN HOST
HIGH (8.2)
Information disclosure while parsing the OCI IE with invalid length.
Published: 2025-02-03T16:51:37.966Z
Updated: 2025-02-03T17:32:23.663Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49837 |
vulnerable | 2026-06-03 14:57:13.746627 |
Improper Validation of Array Index in Automotive OS Platform
HIGH (7.8)
Memory corruption while reading CPU state data during guest VM suspend.
Published: 2025-02-03T16:51:36.782Z
Updated: 2026-02-26T19:09:24.874Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49835 |
vulnerable | 2026-06-03 14:57:13.540143 |
Out-of-bounds Write in SPS Applications
HIGH (7.8)
Memory corruption while reading secure file.
Published: 2025-05-06T08:32:17.432Z
Updated: 2026-02-26T18:28:57.237Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49834 |
vulnerable | 2026-06-03 14:57:13.420578 |
Improper Validation of Array Index in Camera
HIGH (7.8)
Memory corruption while power-up or power-down sequence of the camera sensor.
Published: 2025-02-03T16:51:35.589Z
Updated: 2025-02-03T17:33:28.546Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-49833 |
vulnerable | 2026-06-03 14:57:13.340120 |
Improper Validation of Array Index in Camera
HIGH (7.8)
Memory corruption can occur in the camera when an invalid CID is used.
Published: 2025-02-03T16:51:34.352Z
Updated: 2025-02-03T17:33:51.381Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45584 |
vulnerable | 2026-06-03 14:56:58.118828 |
Untrusted Pointer Dereference in Automotive Android OS
HIGH (7.8)
Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.
Published: 2025-02-03T16:51:31.898Z
Updated: 2025-02-03T17:34:39.632Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45569 |
vulnerable | 2026-06-03 14:56:57.897290 |
Improper Validation of Array Index in WLAN Host Communication
CRITICAL (9.8)
Memory corruption while parsing the ML IE due to invalid frame content.
Published: 2025-02-03T16:51:27.070Z
Updated: 2026-02-26T19:09:25.517Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45559 |
vulnerable | 2026-06-03 14:56:57.822573 |
Buffer Over-read in Automotive OS Platform
MEDIUM (5.5)
Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend.
Published: 2025-01-06T10:33:33.201Z
Updated: 2025-02-28T06:09:08.161Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45558 |
vulnerable | 2026-06-03 14:56:57.761223 |
Buffer Over-read in WLAN Host Cmn
HIGH (7.5)
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
Published: 2025-01-06T10:33:31.971Z
Updated: 2025-01-06T14:18:34.320Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45555 |
vulnerable | 2026-06-03 14:56:57.639815 |
Integer Overflow to Buffer Overflow in Automotive OS Platform
HIGH (8.4)
Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.
Published: 2025-01-06T10:33:30.879Z
Updated: 2025-02-28T06:09:05.191Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45553 |
vulnerable | 2026-06-03 14:56:57.577684 |
Use After Free in DSP Services
HIGH (7.8)
Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.
Published: 2025-01-06T10:33:29.773Z
Updated: 2026-02-26T19:09:32.017Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45552 |
vulnerable | 2026-06-03 14:56:57.507635 |
Buffer Over-read in Data Network Stack & Connectivity
HIGH (8.2)
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.
Published: 2025-04-07T10:15:46.280Z
Updated: 2025-04-07T15:53:03.856Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45551 |
vulnerable | 2026-06-03 14:56:57.347059 |
Weak Authentication in HLOS
MEDIUM (6.2)
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
Published: 2025-04-07T10:15:44.780Z
Updated: 2025-04-07T16:49:45.365Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45549 |
vulnerable | 2026-06-03 14:56:57.235777 |
Exposure of Sensitive System Information to an Unauthorized Control Sphere in KERNEL
HIGH (7.7)
Information disclosure while creating MQ channels.
Published: 2025-04-07T10:15:43.251Z
Updated: 2025-04-07T16:54:13.006Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43065 |
vulnerable | 2026-06-03 14:56:44.345285 |
Exposed Dangerous Method or Function in HLOS
HIGH (7.1)
Cryptographic issues while generating an asymmetric key pair for RKP use cases.
Published: 2025-04-07T10:15:35.110Z
Updated: 2025-04-07T15:56:17.559Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43064 |
vulnerable | 2026-06-03 14:56:44.306713 |
Permissions, Privileges, and Access Controls issue in Automotive OS Platform
HIGH (7.5)
Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.
Published: 2025-01-06T10:33:21.864Z
Updated: 2025-02-28T06:09:02.181Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43063 |
vulnerable | 2026-06-03 14:56:44.304789 |
Buffer Over-read in Automotive Autonomy
MEDIUM (6.1)
information disclosure while invoking the mailbox read API.
Published: 2025-01-06T10:33:20.733Z
Updated: 2025-01-06T14:18:35.659Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43056 |
vulnerable | 2026-06-03 14:56:44.053244 |
Buffer Over-read in Hypervisor
MEDIUM (5.5)
Transient DOS during hypervisor virtual I/O operation in a virtual machine.
Published: 2025-03-03T10:07:23.551Z
Updated: 2025-03-03T13:14:30.395Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43051 |
vulnerable | 2026-06-03 14:56:43.669065 |
Improper Authorization in SPS-HLOS
MEDIUM (5.5)
Information disclosure while deriving keys for a session for any Widevine use case.
Published: 2025-03-03T10:07:20.982Z
Updated: 2025-03-03T16:14:33.850Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-43046 |
vulnerable | 2026-06-03 14:56:43.184338 |
Information Exposure in TZ Secure OS
MEDIUM (5.5)
There may be information disclosure during memory re-allocation in TZ Secure OS.
Published: 2025-04-07T10:15:31.869Z
Updated: 2025-04-07T16:02:40.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38424 |
vulnerable | 2026-06-03 14:56:18.167538 |
Use After Free in GPS
HIGH (7.8)
Memory corruption during GNSS HAL process initialization.
Published: 2024-11-04T10:05:02.628Z
Updated: 2024-11-16T04:55:26.866Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38422 |
vulnerable | 2026-06-03 14:56:17.970297 |
Integer Overflow to Buffer Overflow in Audio
HIGH (7.8)
Memory corruption while processing voice packet with arbitrary data received from ADSP.
Published: 2024-11-04T10:04:59.057Z
Updated: 2024-11-04T14:53:56.837Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38421 |
vulnerable | 2026-06-03 14:56:17.923298 |
Use After Free in Graphics Linux
HIGH (7.8)
Memory corruption while processing GPU commands.
Published: 2024-11-04T10:04:57.496Z
Updated: 2024-11-04T14:46:15.631Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38420 |
vulnerable | 2026-06-03 14:56:17.830518 |
Improper Input Validation in Hypervisor
HIGH (8.8)
Memory corruption while configuring a Hypervisor based input virtual device.
Published: 2025-02-03T16:51:23.408Z
Updated: 2025-02-03T17:36:04.536Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38419 |
vulnerable | 2026-06-03 14:56:17.791616 |
Use After Free in Automotive GPU
HIGH (7.8)
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
Published: 2024-11-04T10:04:56.066Z
Updated: 2024-11-04T14:54:40.181Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38408 |
vulnerable | 2026-06-03 14:56:17.458799 |
Cryptographic Issues in BT Controller
HIGH (8.2)
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
Published: 2024-11-04T10:04:50.376Z
Updated: 2024-11-04T14:56:33.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38405 |
vulnerable | 2026-06-03 14:56:17.355035 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while processing the CU information from RNR IE.
Published: 2024-11-04T10:04:46.138Z
Updated: 2024-11-04T14:57:51.030Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38402 |
vulnerable | 2026-06-03 14:56:17.163214 |
Use After Free in DSP Services
HIGH (7.8)
Memory corruption while processing IOCTL call for getting group info.
Published: 2024-09-02T10:22:48.204Z
Updated: 2024-09-06T16:19:57.498Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38399 |
vulnerable | 2026-06-03 14:56:17.098935 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption while processing user packets to generate page faults.
Published: 2024-10-07T12:58:59.102Z
Updated: 2024-10-07T13:09:46.180Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38397 |
vulnerable | 2026-06-03 14:56:16.959501 |
Buffer Over-read in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing probe response and assoc response frame.
Published: 2024-10-07T12:58:58.120Z
Updated: 2024-10-07T13:10:33.347Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33073 |
vulnerable | 2026-06-03 14:55:51.889730 |
Buffer Over-read in WLAN Host Communication
HIGH (8.2)
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
Published: 2024-10-07T12:58:57.145Z
Updated: 2024-10-07T13:11:28.250Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33068 |
vulnerable | 2026-06-03 14:55:51.872378 |
Use After Free in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
Published: 2024-11-04T10:04:43.380Z
Updated: 2024-11-04T14:38:48.207Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33063 |
vulnerable | 2026-06-03 14:55:51.727515 |
Integer Overflow or Wraparound in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.
Published: 2024-12-02T10:18:47.904Z
Updated: 2024-12-02T15:40:27.584Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33060 |
vulnerable | 2026-06-03 14:55:51.629631 |
Use After Free in DSP Service
HIGH (8.4)
Memory corruption when two threads try to map and unmap a single node simultaneously.
Published: 2024-09-02T10:22:46.127Z
Updated: 2024-09-05T03:56:12.175Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33058 |
vulnerable | 2026-06-03 14:55:51.509684 |
Insufficient Granularity of Access Control in Core
HIGH (7.5)
Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.
Published: 2025-04-07T10:15:30.276Z
Updated: 2025-04-07T16:06:36.533Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33057 |
vulnerable | 2026-06-03 14:55:51.498844 |
Buffer Over-read in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
Published: 2024-09-02T10:22:44.952Z
Updated: 2024-09-03T13:23:06.795Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33056 |
vulnerable | 2026-06-03 14:55:51.391978 |
Buffer Over-read in MProc
HIGH (8.4)
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Published: 2024-12-02T10:18:46.431Z
Updated: 2024-12-03T04:55:35.719Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33051 |
vulnerable | 2026-06-03 14:55:51.082739 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
Published: 2024-09-02T10:22:41.891Z
Updated: 2024-09-03T13:33:06.777Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33050 |
vulnerable | 2026-06-03 14:55:50.972112 |
Buffer Over-read in WLAN Host Communication
HIGH (7.5)
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
Published: 2024-09-02T10:22:40.544Z
Updated: 2024-09-03T13:52:53.129Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33048 |
vulnerable | 2026-06-03 14:55:50.876991 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
Published: 2024-09-02T10:22:39.387Z
Updated: 2024-09-03T13:53:56.238Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33045 |
vulnerable | 2026-06-03 14:55:50.801034 |
Return of Stack Variable Address in Buses
HIGH (8.4)
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
Published: 2024-09-02T10:22:37.525Z
Updated: 2024-09-05T03:56:09.849Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33044 |
vulnerable | 2026-06-03 14:55:50.714924 |
Improper Validation of Array Index in Hypervisor
HIGH (8.4)
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
Published: 2024-12-02T10:18:43.847Z
Updated: 2024-12-03T04:55:34.319Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33039 |
vulnerable | 2026-06-03 14:55:50.461248 |
Untrusted Pointer Dereference in Audio
MEDIUM (6.7)
Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.
Published: 2024-12-02T10:18:41.589Z
Updated: 2024-12-03T04:55:44.526Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33035 |
vulnerable | 2026-06-03 14:55:50.344755 |
Integer Overflow or Wraparound in Display
HIGH (8.4)
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
Published: 2024-09-02T10:22:33.582Z
Updated: 2024-09-05T03:56:07.973Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33034 |
vulnerable | 2026-06-03 14:55:50.336682 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
Published: 2024-08-05T14:21:49.870Z
Updated: 2024-08-05T14:37:43.199Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33028 |
vulnerable | 2026-06-03 14:55:50.240445 |
Use After Free in Automotive Telematics
HIGH (8.4)
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
Published: 2024-08-05T14:21:48.702Z
Updated: 2024-08-05T14:37:12.190Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33026 |
vulnerable | 2026-06-03 14:55:50.076096 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
Published: 2024-08-05T14:21:46.685Z
Updated: 2024-08-05T15:05:33.155Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33025 |
vulnerable | 2026-06-03 14:55:50.061466 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
Published: 2024-08-05T14:21:45.607Z
Updated: 2024-08-05T15:20:21.121Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33024 |
vulnerable | 2026-06-03 14:55:50.046437 |
Integer Overflow or Wraparound in WLAN Host
HIGH (7.5)
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
Published: 2024-08-05T14:21:44.499Z
Updated: 2024-08-05T15:21:21.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33023 |
vulnerable | 2026-06-03 14:55:49.823789 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
Published: 2024-08-05T14:21:43.449Z
Updated: 2024-08-05T14:42:39.778Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33022 |
vulnerable | 2026-06-03 14:55:49.812253 |
Integer Overflow or Wraparound in Automotive GPU
HIGH (8.4)
Memory corruption while allocating memory in HGSL driver.
Published: 2024-08-05T14:21:42.398Z
Updated: 2024-08-05T14:43:56.607Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33021 |
vulnerable | 2026-06-03 14:55:49.800803 |
Use of Uninitialized Variable in Automotive GPU
HIGH (8.4)
Memory corruption while processing IOCTL call to set metainfo.
Published: 2024-08-05T14:21:41.397Z
Updated: 2024-08-05T14:45:22.446Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33020 |
vulnerable | 2026-06-03 14:55:49.791643 |
Buffer Over-read in WLAN HOST
HIGH (7.5)
Transient DOS while processing TID-to-link mapping IE elements.
Published: 2024-08-05T14:21:40.361Z
Updated: 2024-08-05T14:47:53.939Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33019 |
vulnerable | 2026-06-03 14:55:49.781956 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the received TID-to-link mapping action frame.
Published: 2024-08-05T14:21:39.275Z
Updated: 2024-08-05T15:29:54.891Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33018 |
vulnerable | 2026-06-03 14:55:49.769613 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
Published: 2024-08-05T14:21:38.166Z
Updated: 2024-08-05T15:31:33.271Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33016 |
vulnerable | 2026-06-03 14:55:49.589066 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Storage
MEDIUM (6.8)
memory corruption when an invalid firehose patch command is invoked.
Published: 2024-09-02T10:22:32.425Z
Updated: 2024-09-03T14:02:35.440Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33015 |
vulnerable | 2026-06-03 14:55:49.510269 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
Published: 2024-08-05T14:21:37.096Z
Updated: 2024-08-05T15:31:59.436Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33014 |
vulnerable | 2026-06-03 14:55:49.330055 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing ESP IE from beacon/probe response frame.
Published: 2024-08-05T14:21:35.794Z
Updated: 2024-08-05T15:33:16.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33013 |
vulnerable | 2026-06-03 14:55:49.198446 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.
Published: 2024-08-05T14:21:34.386Z
Updated: 2024-08-05T15:34:18.185Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33012 |
vulnerable | 2026-06-03 14:55:49.179776 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
Published: 2024-08-05T14:21:33.219Z
Updated: 2024-08-05T15:35:49.399Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33011 |
vulnerable | 2026-06-03 14:55:49.110981 |
Buffer Over-read in WLAN Host
HIGH (7.5)
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
Published: 2024-08-05T14:21:31.845Z
Updated: 2024-08-05T15:38:17.772Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-33010 |
vulnerable | 2026-06-03 14:55:48.818324 |
Use After Free in WLAN Host
HIGH (7.5)
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
Published: 2024-08-05T14:21:30.704Z
Updated: 2024-08-05T15:38:42.755Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23384 |
vulnerable | 2026-06-03 14:55:03.747703 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.
Published: 2024-08-05T14:21:29.441Z
Updated: 2024-08-16T03:59:05.680Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23383 |
vulnerable | 2026-06-03 14:55:03.734814 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption when kernel driver attempts to trigger hardware fences.
Published: 2024-08-05T14:21:28.410Z
Updated: 2024-08-15T03:55:47.138Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23382 |
vulnerable | 2026-06-03 14:55:03.726928 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption while processing graphics kernel driver request to create DMA fence.
Published: 2024-08-05T14:21:27.359Z
Updated: 2024-08-15T03:55:45.836Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23381 |
vulnerable | 2026-06-03 14:55:03.719437 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU.
Published: 2024-08-05T14:21:26.284Z
Updated: 2024-08-15T03:55:44.404Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23380 |
vulnerable | 2026-06-03 14:55:03.711251 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption while handling user packets during VBO bind operation.
Published: 2024-07-01T14:17:21.973Z
Updated: 2024-08-01T23:06:24.219Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23379 |
vulnerable | 2026-06-03 14:55:03.705767 |
Double Free in DSP Services
MEDIUM (6.7)
Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.
Published: 2024-10-07T12:58:49.343Z
Updated: 2024-10-07T13:20:50.299Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23378 |
vulnerable | 2026-06-03 14:55:03.703271 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
MEDIUM (6.7)
Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.
Published: 2024-10-07T12:58:48.334Z
Updated: 2024-10-07T13:22:23.308Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23373 |
vulnerable | 2026-06-03 14:55:03.581259 |
Use After Free in Graphics
HIGH (8.4)
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Published: 2024-07-01T14:17:20.786Z
Updated: 2024-08-01T23:06:24.305Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23372 |
vulnerable | 2026-06-03 14:55:03.568770 |
Integer Overflow or Wraparound in Graphics
HIGH (8.4)
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.
Published: 2024-07-01T14:17:19.388Z
Updated: 2024-08-01T23:06:24.224Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23369 |
vulnerable | 2026-06-03 14:55:03.526751 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
HIGH (7.8)
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
Published: 2024-10-07T12:58:43.387Z
Updated: 2024-10-07T13:19:06.300Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23368 |
vulnerable | 2026-06-03 14:55:03.395480 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
HIGH (7.8)
Memory corruption when allocating and accessing an entry in an SMEM partition.
Published: 2024-07-01T14:17:17.981Z
Updated: 2024-08-01T23:06:24.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23366 |
vulnerable | 2026-06-03 14:55:03.346204 |
Buffer Over-read in Automotive Autonomy
MEDIUM (6.6)
Information Disclosure while invoking the mailbox write API when message received from user is larger than mailbox size.
Published: 2025-01-06T10:33:13.770Z
Updated: 2025-01-06T14:18:36.413Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23365 |
vulnerable | 2026-06-03 14:55:03.342897 |
Use After Free in SCE-Mink
HIGH (8.4)
Memory corruption while releasing shared resources in MinkSocket listener thread.
Published: 2024-09-02T10:22:31.278Z
Updated: 2024-09-05T03:56:04.314Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23364 |
vulnerable | 2026-06-03 14:55:03.292025 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA).
Published: 2024-09-02T10:22:30.333Z
Updated: 2024-09-03T13:17:27.293Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23362 |
vulnerable | 2026-06-03 14:55:03.106273 |
Improper Input Validation in Trusted Execution Environment
HIGH (7.1)
Cryptographic issue while parsing RSA keys in COBR format.
Published: 2024-09-02T10:22:29.332Z
Updated: 2024-09-05T03:56:03.375Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23357 |
vulnerable | 2026-06-03 14:55:02.947058 |
NULL Pointer Dereference in HLOS
MEDIUM (6.2)
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
Published: 2024-08-05T14:21:25.013Z
Updated: 2024-08-05T15:17:20.073Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23356 |
vulnerable | 2026-06-03 14:55:02.868199 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
HIGH (7.8)
Memory corruption during session sign renewal request calls in HLOS.
Published: 2024-08-05T14:21:23.701Z
Updated: 2024-08-15T03:55:43.129Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23355 |
vulnerable | 2026-06-03 14:55:02.793604 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Automotive
HIGH (7.8)
Memory corruption when keymaster operation imports a shared key.
Published: 2024-08-05T14:21:22.396Z
Updated: 2024-08-15T03:55:41.211Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23354 |
vulnerable | 2026-06-03 14:55:02.762736 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption when the IOCTL call is interrupted by a signal.
Published: 2024-05-06T14:32:22.111Z
Updated: 2024-08-01T23:06:24.299Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23351 |
vulnerable | 2026-06-03 14:55:02.362929 |
Improper Access Control in Graphics Linux
HIGH (8.4)
Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.
Published: 2024-05-06T14:32:20.807Z
Updated: 2025-12-16T18:13:20.203Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21481 |
vulnerable | 2026-06-03 14:54:49.473768 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Hypervisor
HIGH (8.4)
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
Published: 2024-08-05T14:21:17.518Z
Updated: 2024-08-15T03:55:39.689Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21480 |
vulnerable | 2026-06-03 14:54:49.432604 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
HIGH (7.3)
Memory corruption while playing audio file having large-sized input buffer.
Published: 2024-05-06T14:32:19.583Z
Updated: 2024-08-01T22:20:40.887Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21479 |
vulnerable | 2026-06-03 14:54:49.425925 |
Buffer Over-read in Audio
HIGH (7.5)
Transient DOS during music playback of ALAC content.
Published: 2024-08-05T14:21:16.475Z
Updated: 2024-08-05T15:11:41.577Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21478 |
vulnerable | 2026-06-03 14:54:49.421946 |
NULL Pointer Dereference in Graphics
MEDIUM (6.2)
transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA.
Published: 2024-06-03T10:05:25.336Z
Updated: 2024-08-01T22:20:40.820Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21475 |
vulnerable | 2026-06-03 14:54:49.287462 |
Use of Out-of-range Pointer Offset in Video
HIGH (7.8)
Memory corruption when the payload received from firmware is not as per the expected protocol size.
Published: 2024-05-06T14:32:15.988Z
Updated: 2024-08-01T22:20:40.866Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21471 |
vulnerable | 2026-06-03 14:54:49.128823 |
Use After Free in Graphics Linux
HIGH (8.4)
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
Published: 2024-05-06T14:32:13.229Z
Updated: 2024-08-15T16:01:02.923Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21469 |
vulnerable | 2026-06-03 14:54:49.024755 |
Permissions, Privileges, and Access Control issues in TZ Secure OS
HIGH (7.3)
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
Published: 2024-07-01T14:17:15.436Z
Updated: 2024-08-01T22:20:40.597Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21467 |
vulnerable | 2026-06-03 14:54:48.793620 |
Buffer Over-read in WLAN Host Communication
MEDIUM (6.5)
Information disclosure while handling beacon probe frame during scan entry generation in client side.
Published: 2024-08-05T14:21:15.424Z
Updated: 2024-08-05T15:10:33.597Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21466 |
vulnerable | 2026-06-03 14:54:48.784911 |
Integer Underflow (Wrap or Wraparound) in WLAN Host Communication
MEDIUM (6.5)
Information disclosure while parsing sub-IE length during new IE generation.
Published: 2024-07-01T14:17:14.036Z
Updated: 2024-08-01T22:20:40.840Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21465 |
vulnerable | 2026-06-03 14:54:48.710102 |
Buffer Over-read in Trusted Execution Environment
HIGH (7.8)
Memory corruption while processing key blob passed by the user.
Published: 2024-07-01T14:17:12.663Z
Updated: 2024-08-01T22:20:40.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21463 |
vulnerable | 2026-06-03 14:54:48.641862 |
Buffer Copy Without Checking Size of Input in Audio
HIGH (7.3)
Memory corruption while processing Codec2 during v13k decoder pitch synthesis.
Published: 2024-04-01T15:06:04.309Z
Updated: 2024-08-01T22:20:40.754Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21462 |
vulnerable | 2026-06-03 14:54:48.559366 |
Buffer Over-read in TZ Secure OS
HIGH (7.1)
Transient DOS while loading the TA ELF file.
Published: 2024-07-01T14:17:11.022Z
Updated: 2024-08-01T22:20:40.868Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21461 |
vulnerable | 2026-06-03 14:54:48.190632 |
Double Free in HLOS
HIGH (8.4)
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Published: 2024-07-01T14:17:09.366Z
Updated: 2024-08-01T22:20:40.630Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21459 |
vulnerable | 2026-06-03 14:54:48.044300 |
Buffer Over-read in WLAN HOST
MEDIUM (6.5)
Information disclosure while handling beacon or probe response frame in STA.
Published: 2024-08-05T14:21:14.295Z
Updated: 2024-08-05T15:08:59.385Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21458 |
vulnerable | 2026-06-03 14:54:47.998923 |
Buffer Over-read in WLAN HOST
MEDIUM (6.5)
Information disclosure while handling SA query action frame.
Published: 2024-07-01T14:17:06.770Z
Updated: 2024-08-01T22:20:40.616Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21457 |
vulnerable | 2026-06-03 14:54:47.906459 |
Buffer Over-read in WLAN Host Communication
MEDIUM (6.5)
INformation disclosure while handling Multi-link IE in beacon frame.
Published: 2024-07-01T14:17:05.569Z
Updated: 2024-08-01T22:20:40.823Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21456 |
vulnerable | 2026-06-03 14:54:47.834712 |
Buffer Over-read in WLAN HOST
MEDIUM (6.5)
Information Disclosure while parsing beacon frame in STA.
Published: 2024-07-01T14:17:04.379Z
Updated: 2024-08-01T22:20:40.691Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43553 |
vulnerable | 2026-06-03 14:53:03.553451 |
Use of Out-of-range Pointer Offset in WLAN HOST
CRITICAL (9.8)
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.
Published: 2024-03-04T10:48:59.001Z
Updated: 2024-08-02T19:44:43.819Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43552 |
vulnerable | 2026-06-03 14:53:03.542119 |
Use After Free in WLAN Host Communication
CRITICAL (9.8)
Memory corruption while processing MBSSID beacon containing several subelement IE.
Published: 2024-03-04T10:48:57.598Z
Updated: 2024-08-02T19:44:43.808Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43550 |
vulnerable | 2026-06-03 14:53:03.366988 |
Integer Overflow or Wraparound in Core Services
HIGH (7.8)
Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.
Published: 2024-03-04T10:48:56.248Z
Updated: 2024-08-26T20:51:47.415Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43548 |
vulnerable | 2026-06-03 14:53:03.274802 |
Buffer Copy Without Checking Size of Input in Video
HIGH (7.3)
Memory corruption while parsing qcp clip with invalid chunk data size.
Published: 2024-03-04T10:48:53.494Z
Updated: 2024-08-02T19:44:43.762Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43547 |
vulnerable | 2026-06-03 14:53:03.265525 |
Use After Free in Automotive Multimedia
HIGH (8.4)
Memory corruption while invoking IOCTLs calls in Automotive Multimedia.
Published: 2024-03-04T10:48:52.133Z
Updated: 2024-08-08T19:22:22.619Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43546 |
vulnerable | 2026-06-03 14:53:03.216971 |
Use After Free in Automotive Multimedia
HIGH (8.4)
Memory corruption while invoking HGSL IOCTL context create.
Published: 2024-03-04T10:48:50.734Z
Updated: 2024-08-26T20:50:56.397Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43536 |
vulnerable | 2026-06-03 14:53:02.935075 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS while parse fils IE with length equal to 1.
Published: 2024-02-06T05:47:33.289Z
Updated: 2024-08-02T19:44:43.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43534 |
vulnerable | 2026-06-03 14:53:02.896539 |
Use of Out-of-range Pointer Offset in WLAN HOST
HIGH (8.6)
Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point.
Published: 2024-02-06T05:47:30.353Z
Updated: 2024-08-22T19:57:03.732Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43533 |
vulnerable | 2026-06-03 14:53:02.834203 |
Buffer Over-read in WLAN Firmware
HIGH (7.5)
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.
Published: 2024-02-06T05:47:28.736Z
Updated: 2025-05-15T19:44:50.713Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43531 |
vulnerable | 2026-06-03 14:53:02.785887 |
Access of Uninitialized Pointer in SPS Applications
HIGH (8.4)
Memory corruption while verifying the serialized header when the key pairs are generated.
Published: 2024-05-06T14:32:11.964Z
Updated: 2024-08-02T19:44:43.817Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43530 |
vulnerable | 2026-06-03 14:53:02.734718 |
Integer Overflow or Wraparound in HLOS
MEDIUM (5.9)
Memory corruption in HLOS while checking for the storage type.
Published: 2024-05-06T14:32:10.758Z
Updated: 2024-08-02T19:44:43.809Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43528 |
vulnerable | 2026-06-03 14:53:02.629073 |
Buffer Over-read in Audio
MEDIUM (6.1)
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
Published: 2024-05-06T14:32:08.355Z
Updated: 2024-08-02T19:44:43.328Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43526 |
vulnerable | 2026-06-03 14:53:02.593252 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
MEDIUM (6.7)
Memory corruption while querying module parameters from Listen Sound model client in kernel from user space.
Published: 2024-05-06T14:32:05.980Z
Updated: 2024-08-02T19:44:43.825Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43525 |
vulnerable | 2026-06-03 14:53:02.539919 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
MEDIUM (6.7)
Memory corruption while copying the sound model data from user to kernel buffer during sound model register.
Published: 2024-05-06T14:32:04.797Z
Updated: 2025-12-16T18:23:25.256Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43524 |
vulnerable | 2026-06-03 14:53:02.536524 |
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
MEDIUM (6.7)
Memory corruption when the bandpass filter order received from AHAL is not within the expected range.
Published: 2024-05-06T14:32:03.585Z
Updated: 2024-08-02T19:44:42.864Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43522 |
vulnerable | 2026-06-03 14:53:02.456663 |
NULL Pointer Dereference in WLAN Firmware
HIGH (7.5)
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
Published: 2024-02-06T05:47:24.174Z
Updated: 2024-08-21T20:34:17.830Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43521 |
vulnerable | 2026-06-03 14:53:02.337173 |
Use After Free in HLOS
MEDIUM (6.7)
Memory corruption when multiple listeners are being registered with the same file descriptor.
Published: 2024-05-06T14:32:02.380Z
Updated: 2024-08-02T19:44:42.853Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43520 |
vulnerable | 2026-06-03 14:53:02.332306 |
Stack-based Buffer Overflow in WLAN HOST
HIGH (8.6)
Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.
Published: 2024-02-06T05:47:22.584Z
Updated: 2025-05-09T16:29:04.339Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43519 |
vulnerable | 2026-06-03 14:53:02.325173 |
Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Video
HIGH (7.3)
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
Published: 2024-02-06T05:47:21.253Z
Updated: 2024-08-02T19:44:42.886Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43517 |
vulnerable | 2026-06-03 14:53:02.303235 |
Improper Access Control in Automotive Multimedia
HIGH (8.4)
Memory corruption in Automotive Multimedia due to improper access control in HAB.
Published: 2024-02-06T05:47:18.589Z
Updated: 2025-05-15T19:44:56.795Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43513 |
vulnerable | 2026-06-03 14:53:02.177355 |
Use of Out-of-range Pointer Offset in PCIe
HIGH (7.8)
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
Published: 2024-02-06T05:47:15.705Z
Updated: 2025-06-16T18:11:12.210Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33119 |
vulnerable | 2026-06-03 14:52:12.551055 |
Time-of-check Time-of-use (TOCTOU) Race Condition in Hypervisor
HIGH (8.4)
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.
Published: 2024-05-06T14:32:01.069Z
Updated: 2025-12-16T18:23:23.636Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33115 |
vulnerable | 2026-06-03 14:52:12.395649 |
Buffer Over-read in Trusted Execution Environment
HIGH (7.8)
Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
Published: 2024-04-01T15:05:57.965Z
Updated: 2024-08-23T18:52:39.896Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33111 |
vulnerable | 2026-06-03 14:52:12.296588 |
Improper Validation of Array Index in Audio
MEDIUM (5.5)
Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.
Published: 2024-04-01T15:05:56.686Z
Updated: 2024-08-02T15:39:34.383Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33090 |
vulnerable | 2026-06-03 14:52:04.619366 |
Buffer Over-read in Audio
MEDIUM (5.5)
Transient DOS while processing channel information for speaker protection v2 module in ADSP.
Published: 2024-03-04T10:48:37.330Z
Updated: 2024-08-02T15:32:46.628Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33077 |
vulnerable | 2026-06-03 14:52:04.110147 |
Buffer Copy Without Checking Size of Input in HLOS
MEDIUM (6.7)
Memory corruption in HLOS while converting from authorization token to HIDL vector.
Published: 2024-02-06T05:47:14.125Z
Updated: 2024-08-22T20:47:27.087Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33076 |
vulnerable | 2026-06-03 14:52:04.018732 |
Configuration Issue in Core
MEDIUM (5.9)
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
Published: 2024-02-06T05:47:12.814Z
Updated: 2025-06-17T21:29:26.231Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33072 |
vulnerable | 2026-06-03 14:52:03.979937 |
Buffer copy without checking size of Input in Core
CRITICAL (9.3)
Memory corruption in Core while processing control functions.
Published: 2024-02-06T05:47:11.221Z
Updated: 2025-05-15T19:45:11.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33069 |
vulnerable | 2026-06-03 14:52:03.847748 |
Buffer Copy Without Checking Size of Input in Audio
MEDIUM (6.7)
Memory corruption in Audio while processing the calibration data returned from ACDB loader.
Published: 2024-02-06T05:47:09.632Z
Updated: 2024-11-07T21:03:22.273Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33068 |
vulnerable | 2026-06-03 14:52:03.816845 |
Buffer Copy Without Checking Size of Input in Audio
MEDIUM (6.7)
Memory corruption in Audio while processing IIR config data from AFE calibration block.
Published: 2024-02-06T05:47:08.274Z
Updated: 2025-05-09T16:30:15.436Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33067 |
vulnerable | 2026-06-03 14:52:03.808859 |
Use of Out-of-range Pointer Offset in Audio
MEDIUM (6.7)
Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.
Published: 2024-02-06T05:47:06.974Z
Updated: 2024-08-02T15:32:46.744Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33065 |
vulnerable | 2026-06-03 14:52:03.614575 |
Buffer Over-read in Audio
MEDIUM (6.1)
Information disclosure in Audio while accessing AVCS services from ADSP payload.
Published: 2024-02-06T05:47:05.662Z
Updated: 2024-08-06T19:02:32.580Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33064 |
vulnerable | 2026-06-03 14:52:03.607563 |
Buffer Over-read in Audio
MEDIUM (5.5)
Transient DOS in Audio when invoking callback function of ASM driver.
Published: 2024-02-06T05:47:04.325Z
Updated: 2024-08-02T15:32:46.652Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33039 |
vulnerable | 2026-06-03 14:52:02.693807 |
Use After Free in Automotive Display
HIGH (8.4)
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.
Published: 2023-10-03T05:00:46.094Z
Updated: 2025-02-27T20:47:01.752Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-33023 |
vulnerable | 2026-06-03 14:52:01.924727 |
Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in SPS-Applications
HIGH (8.4)
Memory corruption while processing finish_sign command to pass a rsp buffer.
Published: 2024-04-01T15:05:51.287Z
Updated: 2024-08-02T15:32:46.521Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28578 |
vulnerable | 2026-06-03 14:51:12.611928 |
Improper Input Validation in Services
CRITICAL (9.3)
Memory corruption in Core Services while executing the command for removing a single event listener.
Published: 2024-03-04T10:48:27.802Z
Updated: 2024-08-29T18:23:28.510Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28574 |
vulnerable | 2026-06-03 14:51:12.368988 |
Improper Input Validation in Core
CRITICAL (9)
Memory corruption in core services when Diag handler receives a command to configure event listeners.
Published: 2023-11-07T05:26:45.653Z
Updated: 2024-08-02T13:43:22.874Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28556 |
vulnerable | 2026-06-03 14:51:11.413078 |
Improper Authorization in HLOS
HIGH (7.1)
Cryptographic issue in HLOS during key management.
Published: 2023-11-07T05:26:36.631Z
Updated: 2024-08-02T13:43:22.844Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28547 |
vulnerable | 2026-06-03 14:51:10.764865 |
Buffer Copy Without Checking Size of Input in SPS Applications
HIGH (8.4)
Memory corruption in SPS Application while requesting for public key in sorter TA.
Published: 2024-04-01T15:05:49.478Z
Updated: 2024-08-02T13:43:22.683Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28545 |
vulnerable | 2026-06-03 14:51:10.545623 |
Improper Restriction of Operations within the Bounds of a Memory Buffer in TZ Secure OS
HIGH (8.2)
Memory corruption in TZ Secure OS while loading an app ELF.
Published: 2023-11-07T05:26:32.849Z
Updated: 2024-08-02T13:43:22.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24853 |
vulnerable | 2026-06-03 14:49:31.450247 |
Improper Input Validation in HLOS
HIGH (8.4)
Memory Corruption in HLOS while registering for key provisioning notify.
Published: 2023-10-03T05:00:33.133Z
Updated: 2025-02-27T20:48:02.927Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24852 |
vulnerable | 2026-06-03 14:49:31.353900 |
Improper Authentication in Core
HIGH (8.4)
Memory Corruption in Core due to secure memory access by user while loading modem image.
Published: 2023-11-07T05:26:31.358Z
Updated: 2024-08-02T11:03:19.294Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24850 |
vulnerable | 2026-06-03 14:49:31.154506 |
Improper Validation of Array Index in HLOS
HIGH (7.8)
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
Published: 2023-10-03T05:00:31.983Z
Updated: 2025-02-27T20:48:09.352Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-22382 |
vulnerable | 2026-06-03 14:49:18.226789 |
Improper Input Validation in Automotive
HIGH (7.4)
Weak configuration in Automotive while VM is processing a listener request from TEE.
Published: 2023-10-03T05:00:21.102Z
Updated: 2025-02-27T20:48:27.191Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-21673 |
vulnerable | 2026-06-03 14:49:15.316396 |
Improper Access Control in Kernel
HIGH (8.7)
Improper Access to the VM resource manager can lead to Memory Corruption.
Published: 2023-10-03T05:00:19.919Z
Updated: 2025-02-27T20:48:34.744Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.