39 matches found
EUVD-2024-20874
Malicious code in bioql PyPI...
EUVD-2025-10003
Malicious code in bioql PyPI...
EUVD-2022-27255
Malicious code in bioql PyPI...
Malicious code in @zalastax/nolb-hab (npm)
The package @zalastax/nolb-hab was found to contain malicious code...
MAL-2025-11872 Malicious code in @zalastax/nolb-hab (npm)
The package @zalastax/nolb-hab was found to contain malicious code...
CVE-2024-23370
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same...
CVE-2025-21425
Memory corruption may occur due top improper access control in HAB process...
CVE-2025-21425
Memory corruption may occur due top improper access control in HAB process...
CVE-2025-21425
CVE-2025-21425 affects Qualcomm chipsets (HAB process) with memory corruption caused by improper access control. Impact is high (confidentiality, integrity, availability per sources). Exploitation status not indicated in the provided documents; details on affected versions are not consistently pr...
CVE-2025-21425 Improper Access Control in Automotive Linux OS
Memory corruption may occur due top improper access control in HAB process...
CVE-2025-21425 Improper Access Control in Automotive Linux OS
Memory corruption may occur due top improper access control in HAB process...
Qualcomm Chipsets 访问控制错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An access control error vulnerability exists in Qualcomm Chipsets that stems from improper access control of the HAB process, which could lead to memory corruption...
The vulnerability of the hab_ioctl() function in Qualcomm’s embedded software allows a hacker to disclose protected information.
The vulnerability of the habioctl function in Qualcomm’s embedded software lies in the fact that the operation results are written outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...
CVE-2024-23370
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same...
CVE-2024-23370 Use After Free in Automotive Multimedia
Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same...
CVE-2024-23370
CVE-2024-23370 is a memory corruption issue involving Qualcomm automotive multimedia: when one process issues IOCTLs from user-space to create a HAB virtual channel and another process issues IOCTLs to destroy the same channel, the conflict can lead to memory corruption. Connected sources corrobo...
PT-2024-19847 · Qualcomm · Snapdragon +10
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption that occurs when one process invokes IOCTL calls from user-space to create a HAB virtual channel, and another proce...
PT-2025-2513 · Qualcomm · Qualcomm Embedded Platform Microcode
Name of the Vulnerable Software and Affected Versions: Qualcomm embedded platform microcode affected versions not specified Description: The issue is related to the hab ioctl function in Qualcomm's microcode, which is vulnerable to a buffer overflow in memory. This can lead to the disclosure of...
CVE-2023-43517
Memory corruption in Automotive Multimedia due to improper access control in HAB...
CVE-2023-43517
CVE-2023-43517 corresponds to a memory corruption issue in Automotive Multimedia due to improper access control in HAB on Qualcomm chipsets. Affected: Automotive Multimedia components (Qualcomm-based). Root cause: improper access control enabling memory corruption; impact per the CVSS vectors is ...