6.5
CVE-2025-47402 - Buffer Over-read in WLAN Firmware
Transient DOS when processing a received frame with an excessively large authentication information element.
7.8
CVE-2025-47399 - Buffer Copy Without Checking Size of Input in Camera
Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.
7.8
CVE-2025-47398 - Use After Free in Graphics
Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.
7.8
CVE-2025-47397 - Improper Release of Memory Before Removing Last Reference in Graphics
Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.
7.1
CVE-2025-47366 - Exposed Dangerous Method or Function in HLOS
Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.
6.8
CVE-2025-47364 - Integer Overflow or Wraparound in Automotive
Memory corruption while calculating offset from partition start point.
6.8
CVE-2025-47363 - Integer Overflow or Wraparound in Automotive
Memory corruption when calculating oversized partition sizes without proper checks.
7.8
CVE-2025-47359 - Use After Free in Secure Processor
Memory Corruption when multiple threads simultaneously access a memory free API.
7.8
CVE-2025-47358 - Use After Free in Secure Processor
Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.
7.6
CVE-2025-14914 - IBM WebSphere Application Server Liberty Path Traversal
IBM WebSphere Application Server Liberty 17.0.0.3 through 26.0.0.1ย could allow a privileged user to upload a zip archive containing path traversal sequences resulting in an overwrite of files leading to arbitrary code execution.