CVE-2024-38417
- EPSS 0.02%
- Published 03.02.2025 17:15:17
- Last modified 05.02.2025 13:58:05
Information disclosure while processing IO control commands.
- EPSS 0.02%
- Published 03.02.2025 17:15:17
- Last modified 05.02.2025 13:57:33
Memory corruption while parsing the memory map info in IOCTL calls.
CVE-2024-38404
- EPSS 0.09%
- Published 03.02.2025 17:15:16
- Last modified 05.02.2025 13:59:05
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.
CVE-2024-33061
- EPSS 0.03%
- Published 06.01.2025 11:15:08
- Last modified 10.01.2025 16:49:42
Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.
CVE-2024-33067
- EPSS 0.03%
- Published 06.01.2025 11:15:08
- Last modified 11.08.2025 15:06:17
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
CVE-2024-43052
- EPSS 0.04%
- Published 02.12.2024 11:15:09
- Last modified 12.12.2024 15:28:54
Memory corruption while processing API calls to NPU with invalid input.
- EPSS 0.02%
- Published 02.12.2024 11:15:08
- Last modified 12.12.2024 15:21:35
Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access.
CVE-2024-33044
- EPSS 0.04%
- Published 02.12.2024 11:15:08
- Last modified 12.12.2024 15:23:26
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
CVE-2024-33053
- EPSS 0.03%
- Published 02.12.2024 11:15:08
- Last modified 12.12.2024 15:23:57
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.
CVE-2024-33037
- EPSS 0.03%
- Published 02.12.2024 11:15:07
- Last modified 11.12.2024 16:15:14
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.