Category: Vulnerabilities

Memory Corruption when handling power management requests with improperly sized input/output buffers. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when retrieving output buffer with insufficient size validation. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans. More information : https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

A security flaw has been discovered in OFFIS DCMTK up to 3.7.0. This impacts the function executeOnReception/executeOnEndOfStudy of the file dcmnet/apps/storescp.cc of the component storescp. Performing a manipulation results in os command injection. Remote...

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly...

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in David Lingren Media LIbrary Assistant allows SQL Injection.This issue affects Media LIbrary Assistant: from n/a through 3.34. More information :...

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in David Lingren Media LIbrary Assistant allows Stored XSS.This issue affects Media LIbrary Assistant: from n/a through 3.34. More information : https://patchstack.com/database/wordpress/plugin/media-library-assistant/vulnerability/wordpress-media-library-assistant-plugin-3-34-cross-site-scripting-xss-vulnerability?_s_id=cve