CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-43062	Use After Free in Camera Linux Description: Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization. CVSS: HIGH (7.8) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43061	Use After Free in Audio Description: Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive. CVSS: HIGH (7.8) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43060	Use of Out-of-range Pointer Offset in Automotive Audio Description: Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP. CVSS: HIGH (7.8) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43059	Use After Free in Automotive Multimedia Description: Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. CVSS: HIGH (7.8) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43057	Use After Free in MProc Description: Memory corruption while processing command in Glink linux. CVSS: HIGH (7.8) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43056	Buffer Over-read in Hypervisor Description: Transient DOS during hypervisor virtual I/O operation in a virtual machine. CVSS: MEDIUM (5.5) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43055	Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Camera_Linux Description: Memory corruption while processing camera use case IOCTL call. CVSS: HIGH (7.8) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-43051	Improper Authorization in SPS-HLOS Description: Information disclosure while deriving keys for a session for any Widevine use case. CVSS: MEDIUM (5.5) EPSS Score: 0.01% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-38426	Improper Authentication in Modem Description: While processing the authentication message in UE, improper authentication may lead to information disclosure. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE March 3rd, 2025 (4 months ago)
CVE-2024-24778	Apache StreamPipes: Resources Permission Escalation Description: Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know. This issue affects Apache StreamPipes: through 0.95.1. Users are recommended to upgrade to version 0.97.0 which fixes the issue. EPSS Score: 0.03% Source: CVE March 3rd, 2025 (4 months ago)