PT-2025-48434

An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...

CVE-2025-47361 Improper Validation of Array Index in Automotive Software platform based on QNX

Memory corruption when triggering a subsystem crash with an out-of-range identifier...

CVE-2025-47360

CVE-2025-47360 affects an Automotive Software platform based on QNX. The issue is memory corruption (described as a stack-based buffer overflow) occurring while processing client messages during device management, with local attack vector and high impact on confidentiality, integrity, and availab...

CVE-2025-47353

Summary: CVE-2025-47353 describes a memory corruption issue in an Automotive Software platform based on QNX used by Qualcomm, triggered by processing requests sent from GVM. The CVSS 3.1 base score is 7.8 (High) with local attack vector, low attack complexity, and no privileges or user interactio...

CVE-2025-47353 Exposed Dangerous Method or Function in Automotive Software platform based on QNX

Memory corruption while processing request sent from GVM...

PT-2025-44928

Name of the Vulnerable Software and Affected Versions Automotive Software platform based on QNX affected versions not specified Description A memory corruption issue exists when triggering a subsystem crash with an out-of-range identifier. The issue involves improper validation of an array index...

CVE-2025-47347

CVE-2025-47347 affects an automotive software platform based on QNX and Qualcomm chipsets. The issue is described as a memory corruption (also reflected as a stack-based overflow in some listings) occurring while processing control commands in the virtual memory management interface, indicating a...

CVE-2025-47315 Use After Free in Automotive Software platform based on QNX

Memory corruption while handling repeated memory unmap requests from guest VM...

CVE-2025-47315

CVE-2025-47315: Memory corruption in Qualcomm chipset virtualization components when handling duplicate memory unmap requests from a guest VM. Affected: Qualcomm chipsets; root cause is repeated unmap handling leading to memory corruption. Impact per the entry: high in confidentiality, integrity,...

CVE-2025-47314

The CVE-2025-47314 issue affects an Automotive Software platform based on QNX used in Qualcomm chipsets. The root cause reported is memory corruption encountered when processing data sent by the FE driver. The vulnerability is described with a CVSSv3.1 base score of 7.8 (HIGH) and an attack vecto...

CVE-2025-47314 Improper Input Validation in Automotive Software platform based on QNX

Memory corruption while processing data sent by FE driver...

CVE-2025-3944

Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on QNX, Tridium Niagara Enterprise Security on QNX allows File Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise Security: before...

CVE-2024-48856

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec...

BlackBerry QNX Software Development Platform 安全漏洞

The Blackberry BlackBerry QNX Software Development Platform is a suite of QNX software development platforms from Blackberry Canada. The platform is primarily used to develop software based on the QNX platform. A security vulnerability exists in the BlackBerry QNX Software Development Platform du...

CVE-2020-6932

An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to potentially read arbitrary files and run arbitrary executables in the context of the web server...

BlackBerry QNX Software Development Platform Information Disclosure Vulnerability (CNVD-2019-23834)

BlackBerry QNX Software Development Platform is a suite of QNX software development platforms from BlackBerry Canada. The platform is mainly used to develop software based on the QNX platform. An information disclosure vulnerability exists in BlackBerry QNX Software Development Platform 6.5.0 SP1...

PT-2017-16160 · Blackberry · Qnx Sdp

Name of the Vulnerable Software and Affected Versions: BlackBerry QNX Software Development Platform SDP version 6.6.0 Description: The issue is related to an elevation of privilege vulnerability in the default configuration of the QNX SDP with QNet enabled. This could allow an attacker to access...