7.5
CVE-2025-47328 - Buffer Over-read in WLAN HAL
Transient DOS while processing power control requests with invalid antenna or stream values.
7.8
CVE-2025-47327 - Use After Free in Camera
Memory corruption while encoding the image data.
7.5
CVE-2025-47326 - Buffer Over-read in WLAN HAL
Transient DOS while handling command data during power control processing.
7.5
CVE-2025-47318 - Buffer Over-read in BT Controller
Transient DOS while parsing the EPTM test control message to get the test pattern.
7.8
CVE-2025-47317 - Buffer Over-read in BT Controller
Memory corruption due to global buffer overflow when a test command uses an invalid payload type.
7.8
CVE-2025-47316 - Double Free in Video
Memory corruption due to double free when multiple threads race to set the timestamp store.
7.8
CVE-2025-47315 - Use After Free in Automotive Software platform based on QNX
Memory corruption while handling repeated memory unmap requests from guest VM.
7.8
CVE-2025-47314 - Improper Input Validation in Automotive Software platform based on QNX
Memory corruption while processing data sent by FE driver.
7.8
CVE-2025-27077 - Use After Free in Automotive Software platform based on QNX
Memory corruption while processing message in guest VM.
7.8
CVE-2025-27037 - Use After Free in Camera Driver
Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference to CPU buffers.