7.8
CVE-2024-45541 - Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN Windows Host
Memory corruption when IOCTL call is invoked from user-space to read board data.
7.5
CVE-2024-43064 - Permissions, Privileges, and Access Controls issue in Automotive OS Platform
Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.
6.1
CVE-2024-43063 - Buffer Over-read in Automotive Autonomy
information disclosure while invoking the mailbox read API.
6.1
CVE-2024-33067 - Buffer Over-read in Audio
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
6.8
CVE-2024-33061 - Buffer Over-read in DSP Service
Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.
6.7
CVE-2024-33059 - Use After Free in Computer Vision
Memory corruption while processing frame command IOCTL calls.
6.7
CVE-2024-33055 - Use After Free in Computer Vision
Memory corruption while invoking IOCTL calls to unmap the DMA buffers.
6.7
CVE-2024-33041 - Use of Out-of-range Pointer Offset in Computer Vision
Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,
6.6
CVE-2024-23366 - Buffer Over-read in Automotive Autonomy
Information Disclosure while invoking the mailbox write API when message received from user is larger than mailbox size.
8.4
CVE-2024-21464 - Buffer Copy Without Checking Size of Input in Data Network Stack & Connectivity
Memory corruption while processing IPA statistics, when there are no active clients registered.