Blackberry

Qnx Software Development Platform

21 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-2474

  • EPSS 0.25%
  • Published 10.06.2025 17:38:03
  • Last modified 12.06.2025 16:06:29

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec.

7.5

CVE-2024-48858

  • EPSS 0.14%
  • Published 14.01.2025 20:15:28
  • Last modified 14.01.2025 20:15:28

Improper input validation in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec.

7.5

CVE-2024-48857

  • EPSS 0.18%
  • Published 14.01.2025 19:15:31
  • Last modified 21.01.2025 18:06:46

NULL pointer dereference in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec.

9.8

CVE-2024-48856

  • EPSS 0.42%
  • Published 14.01.2025 19:15:31
  • Last modified 21.01.2025 18:06:49

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec.

7.5

CVE-2024-48855

  • EPSS 0.2%
  • Published 14.01.2025 19:15:31
  • Last modified 21.01.2025 18:07:12

Out-of-bounds read in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.

7.5

CVE-2024-48854

  • EPSS 0.2%
  • Published 14.01.2025 19:15:31
  • Last modified 21.01.2025 18:07:08

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.

6.2

CVE-2024-35215

  • EPSS 0.03%
  • Published 08.10.2024 18:15:05
  • Last modified 10.10.2024 12:56:30

NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the ...

9

CVE-2024-35213

  • EPSS 0.24%
  • Published 11.06.2024 19:16:07
  • Last modified 09.09.2025 15:15:31

An improper input validation vulnerability in the SGI Image Codec of QNX SDP version(s) 6.6, 7.0, and 7.1 could allow an attacker to potentially cause a denial-of-service condition or execute code in the context of the image processing process.

7.1

CVE-2023-32701

  • EPSS 0.09%
  • Published 14.11.2023 19:15:27
  • Last modified 09.09.2025 15:15:30

Improper Input Validation in the Networking Stack of QNX SDP version(s) 6.6, 7.0, and 7.1 could allow an attacker to potentially cause Information Disclosure or a Denial-of-Service condition.

7.8

CVE-2021-32025

  • EPSS 0.03%
  • Published 10.03.2022 17:42:14
  • Last modified 22.08.2025 16:15:34

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform version(s) 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versi...