EUVD-2021-12292

Malware in sbrugna...

EUVD-2024-30782

Malicious code in bioql PyPI...

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesnt validate the IPC message received from the firmware...

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesnt validate the IPC message received from the firmware...

CVE-2024-33037

CVE-2024-33037 describes information disclosure in Qualcomm NPU stack: the NPU firmware can send an invalid IPC message to the NPU driver, and the driver does not validate the IPC message, enabling potential disclosure of sensitive information. Documents consistently identify the root cause as un...

PUB-A-340527441

there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-25396

An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution...

Input validation

An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution...

CVE-2021-25396

An improper input validation vulnerability in NPU firmware prior to SMR MAY-2021 Release 1 allows arbitrary memory write and code execution...

CVE-2021-25396

CVE-2021-25396 affects Samsung devices with NPU firmware prior to SMR MAY-2021 Release 1, where improper input validation enables arbitrary memory writes and code execution. Root cause is input validation weakness in the NPU firmware. Impact per CVSS indicates local access, high confidentiality/i...