Blackberry

Qnx Software Development Platform

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-2474

  • EPSS 0.25%
  • Veröffentlicht 10.06.2025 17:38:03
  • Zuletzt bearbeitet 12.06.2025 16:06:29

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec.

7.5

CVE-2024-48858

  • EPSS 0.14%
  • Veröffentlicht 14.01.2025 20:15:28
  • Zuletzt bearbeitet 14.01.2025 20:15:28

Improper input validation in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec.

7.5

CVE-2024-48857

  • EPSS 0.18%
  • Veröffentlicht 14.01.2025 19:15:31
  • Zuletzt bearbeitet 21.01.2025 18:06:46

NULL pointer dereference in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec.

9.8

CVE-2024-48856

  • EPSS 0.42%
  • Veröffentlicht 14.01.2025 19:15:31
  • Zuletzt bearbeitet 21.01.2025 18:06:49

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec.

7.5

CVE-2024-48855

  • EPSS 0.2%
  • Veröffentlicht 14.01.2025 19:15:31
  • Zuletzt bearbeitet 21.01.2025 18:07:12

Out-of-bounds read in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.

7.5

CVE-2024-48854

  • EPSS 0.2%
  • Veröffentlicht 14.01.2025 19:15:31
  • Zuletzt bearbeitet 21.01.2025 18:07:08

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.

6.2

CVE-2024-35215

  • EPSS 0.03%
  • Veröffentlicht 08.10.2024 18:15:05
  • Zuletzt bearbeitet 10.10.2024 12:56:30

NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the ...

9

CVE-2024-35213

  • EPSS 0.24%
  • Veröffentlicht 11.06.2024 19:16:07
  • Zuletzt bearbeitet 09.09.2025 15:15:31

An improper input validation vulnerability in the SGI Image Codec of QNX SDP version(s) 6.6, 7.0, and 7.1 could allow an attacker to potentially cause a denial-of-service condition or execute code in the context of the image processing process.

7.1

CVE-2023-32701

  • EPSS 0.09%
  • Veröffentlicht 14.11.2023 19:15:27
  • Zuletzt bearbeitet 09.09.2025 15:15:30

Improper Input Validation in the Networking Stack of QNX SDP version(s) 6.6, 7.0, and 7.1 could allow an attacker to potentially cause Information Disclosure or a Denial-of-Service condition.

7.8

CVE-2021-32025

  • EPSS 0.03%
  • Veröffentlicht 10.03.2022 17:42:14
  • Zuletzt bearbeitet 22.08.2025 16:15:34

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform version(s) 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versi...