Summary
| Detail | |||
|---|---|---|---|
| Vendor | Qualcomm | First view | 2023-10-03 |
| Product | qdu1010 Firmware | Last view | 2025-07-08 |
| Version | - | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:qualcomm:qdu1010_firmware | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2025-07-08 | CVE-2025-27061 | Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware. |
| 7.8 | 2025-07-08 | CVE-2025-27043 | Memory corruption while processing manipulated payload in video firmware. |
| 7.8 | 2025-07-08 | CVE-2025-27042 | Memory corruption while processing video packets received from video firmware. |
| 5.5 | 2025-07-08 | CVE-2025-21433 | Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus. |
| 7.8 | 2025-07-08 | CVE-2025-21432 | Memory corruption while retrieving the CBOR data from TA. |
| 7.8 | 2025-07-08 | CVE-2025-21422 | Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses. |
| 7.8 | 2025-07-08 | CVE-2024-53009 | Memory corruption while operating the mailbox in Automotive. |
| 7.8 | 2025-05-06 | CVE-2024-49845 | Memory corruption during the FRS UDS generation process. |
| 7.8 | 2025-05-06 | CVE-2024-49844 | Memory corruption while triggering commands in the PlayReady Trusted application. |
| 7.8 | 2025-05-06 | CVE-2024-49842 | Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. |
| 7.8 | 2025-05-06 | CVE-2024-49841 | Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. |
| 7.8 | 2025-05-06 | CVE-2024-49835 | Memory corruption while reading secure file. |
| 7.8 | 2025-03-03 | CVE-2025-21424 | Memory corruption while calling the NPU driver APIs concurrently. |
| 7.8 | 2025-03-03 | CVE-2024-53023 | Memory corruption may occur while accessing a variable during extended back to back tests. |
| 6.5 | 2025-03-03 | CVE-2024-43056 | Transient DOS during hypervisor virtual I/O operation in a virtual machine. |
| 5.5 | 2025-03-03 | CVE-2024-43051 | Information disclosure while deriving keys for a session for any Widevine use case. |
| 7.8 | 2025-02-03 | CVE-2024-45584 | Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. |
| 7.8 | 2025-02-03 | CVE-2024-38420 | Memory corruption while configuring a Hypervisor based input virtual device. |
| 7.8 | 2025-01-06 | CVE-2024-45553 | Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise. |
| 7.8 | 2024-12-02 | CVE-2024-33056 | Memory corruption when allocating and accessing an entry in an SMEM partition continuously. |
| 7.8 | 2024-12-02 | CVE-2024-33044 | Memory corruption while Configuring the SMR/S2CR register in Bypass mode. |
| 7.8 | 2024-11-04 | CVE-2024-38419 | Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. |
| 7.8 | 2024-10-07 | CVE-2024-23369 | Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. |
| 7.8 | 2024-09-02 | CVE-2024-38402 | Memory corruption while processing IOCTL call for getting group info. |
| 7.8 | 2024-09-02 | CVE-2024-33060 | Memory corruption when two threads try to map and unmap a single node simultaneously. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 28% (21) | CWE-787 | Out-of-bounds Write |
| 14% (11) | CWE-416 | Use After Free |
| 13% (10) | CWE-120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflo... |
| 6% (5) | CWE-125 | Out-of-bounds Read |
| 6% (5) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 5% (4) | CWE-190 | Integer Overflow or Wraparound |
| 4% (3) | CWE-476 | NULL Pointer Dereference |
| 4% (3) | CWE-129 | Improper Validation of Array Index |
| 2% (2) | CWE-415 | Double Free |
| 2% (2) | CWE-20 | Improper Input Validation |
| 1% (1) | CWE-755 | Improper Handling of Exceptional Conditions |
| 1% (1) | CWE-390 | Detection of Error Condition Without Action |
| 1% (1) | CWE-367 | Time-of-check Time-of-use (TOCTOU) Race Condition |
| 1% (1) | CWE-310 | Cryptographic Issues |
| 1% (1) | CWE-285 | Improper Access Control (Authorization) |
| 1% (1) | CWE-284 | Access Control (Authorization) Issues |
| 1% (1) | CWE-131 | Incorrect Calculation of Buffer Size |
| 1% (1) | CWE-126 | Buffer Over-read |
