5.5
CVE-2025-21472 - Leftover Debug Code in Secure Element
Information disclosure while capturing logs as eSE debug messages are logged.
6.5
CVE-2025-21465 - Out-of-bounds Read in Core
Information disclosure while processing the hash segment in an MBN file.
6.5
CVE-2025-21464 - Out-of-bounds Read in Core
Information disclosure while reading data from an image using specified offset and size parameters.
7.8
CVE-2025-21461 - Out-of-bounds Write in Camera_Linux
Memory corruption when programming registers through virtual CDM.
7.8
CVE-2025-21458 - Use After Free in NPU
Memory corruption when IOCTL interface is called to map and unmap buffers simultaneously.
6.1
CVE-2025-21457 - Buffer Over-read in Automotive OS Platform Android
Information disclosure while opening a fastrpc session when domain is not sanitized.
7.8
CVE-2025-21456 - Use After Free in NPU
Memory corruption while processing IOCTL command when multiple threads are called to map/unmap buffer concurrently.
7.8
CVE-2025-21455 - Time-of-check Time-of-use (TOCTOU) Race Condition in Camera_Linux
Memory corruption while submitting blob data to kernel space though IOCTL.
7.5
CVE-2025-21452 - Reachable Assertion in Modem
Transient DOS while processing a random-access response (RAR) with an invalid PDU length on LTE network.
6
CVE-2025-7954 - Race Condition in Shopware Voucher Submission
A race condition vulnerability has been identified in Shopware's voucher system of ShopwareΒ v6.6.10.4 that allows attackers to bypass intended voucher restrictions and exceed usage limitations.