CVE-2023-33041

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids...

CVE-2021-33041

vmd through 1.34.0 allows 'div class="markdown-body"' XSS, as demonstrated by Electron remote code execution via require'childprocess'.execSync'calc.exe' on Windows and a similar attack on macOS...

CVE-2024-33041 Use of Out-of-range Pointer Offset in Computer Vision

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,...

CVE-2024-33041 Use of Out-of-range Pointer Offset in Computer Vision

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,...

CVE-2024-33041

CVE-2024-33041 concerns memory corruption in Qualcomm chipsets caused by missing input parameter validation for the fence frame IOCTL calls (specifically the number of fences). The root cause is a validation gap in the fence framework IOCTL path, leading to potential memory corruption with high i...

CVE-2023-33041

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids...

CVE-2023-33041

Summary: CVE-2023-33041 describes a WLAN Firmware assertion caused by state confusion when looking up peer IDs. Impact: Availability loss (NVD metrics: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). Root cause: assertion due to state confusion in peer-id lookup. Affected component: WLAN Firmware; no expli...

CVE-2021-33041

CVE-2021-33041 affects vmd up to version 1.34.0, where attacker-supplied content containing div class="markdown-body" enables XSS. Documented demonstrations show Electron-based remote code execution via Electron’s require('child_process').execSync('calc.exe') on Windows, with a similar attack on ...