141 matches found
EUVD-2024-30783
Malicious code in bioql PyPI...
Leadership, Innovation, and the Future of AI: Lessons from Trend Micro CEO & Co-Founder Eva Chen
Discover how AI is reshaping cybersecurity through our CEO, Eva Chen’s industry briefing series. Gain practical strategies, real-world insights, and a clear roadmap to secure your AI initiatives with confidence...
CVE-2024-23377
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
CVE-2022-33281
Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames...
CVE-2024-54909
A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download...
CVE-2024-54909
A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download...
PT-2025-5875 · Unknown · Goldpankit Eva-Server
Name of the Vulnerable Software and Affected Versions: GoldPanKit eva-server version 4.1.0 Description: A vulnerability has been identified that affects the path parameter of the "/api/resource/local/download" endpoint. Manipulation of this path parameter can lead to arbitrary file download...
CVE-2024-54909
GoldPanKit eva-server v4.1.0 is affected by a vulnerability in the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download. The root cause is a flaw in handling the path input for that endpoint, enabling access to files...
CVE-2024-54909
A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download...
CVE-2024-33038
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA...
Malicious code in @aftersale/react-eva (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2024-23377
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
CVE-2024-23377 Use of Out-of-range Pointer Offset in ComputerVision
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
CVE-2024-23377 Use of Out-of-range Pointer Offset in ComputerVision
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
CVE-2024-23377
CVE-2024-23377 describes memory corruption when a user-space IOCTL is invoked on Qualcomm EVA driver and the user tampers with the original packet size after system properties have been sent. Connected documents corroborate that the issue affects Qualcomm Snapdragon Compute EVA driver and is expo...
CVE-2024-33038
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA...
CVE-2024-33038 Untrusted Pointer Dereference in Computer Vision
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA...
CVE-2024-33038 Untrusted Pointer Dereference in Computer Vision
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA...
CVE-2024-33038
CVE-2024-33038 involves memory corruption when untrusted or corrupted pointers are passed from DSP to EVA in a Qualcomm/Camera-related Computer Vision path. The issue is characterized as local, with low attack complexity and high impact on confidentiality, integrity, and availability. Public refe...
Bringing Security Back into Balance
This article by Trend Micro CEO Eva Chen brings focus back to striking the cybersecurity strategies balance between business C-suite and information technology IT departments...