Aggregator

CVE-2025-47394 | Qualcomm Snapdragon Compute FastConnect 6200 up to WSA8845 buffer overflow

VulDB Recent Entries
5 months 1 week ago
A vulnerability identified as critical has been detected in Qualcomm Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Wearables. Affected is an unknown function. Performing a manipulation results in buffer overflow. This vulnerability is cataloged as CVE-2025-47394. The attack must be initiated from a local position. There is no exploit available. You should upgrade the affected component.
vuldb.com

CVE-2025-47369 | Qualcomm Snapdragon Auto up to WSA8845H IOCTL Call information disclosure

VulDB Recent Entries
5 months 1 week ago
A vulnerability categorized as problematic has been discovered in Qualcomm Snapdragon Auto, Snapdragon CCW, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon WBC and Snapdragon Wearables. This impacts an unknown function of the component IOCTL Call Handler. Such manipulation leads to information disclosure. This vulnerability is listed as CVE-2025-47369. The attack must be carried out locally. There is no available exploit. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-47348 | Qualcomm Snapdragon Auto up to XR1 Platform Trusted Application uninitialized variable

VulDB Recent Entries
5 months 1 week ago
A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon CCW, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon WBC. It has been declared as critical. The impacted element is an unknown function of the component Trusted Application. The manipulation results in use of uninitialized variable. This vulnerability is identified as CVE-2025-47348. The attack is only possible with local access. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-47344 | Qualcomm Snapdragon Auto up to WSA8845H Sensor Utility toctou

VulDB Recent Entries
5 months 1 week ago
A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT and Snapdragon Mobile. It has been classified as critical. The affected element is an unknown function of the component Sensor Utility. The manipulation leads to time-of-check time-of-use. This vulnerability is referenced as CVE-2025-47344. The attack can only be performed from a local environment. No exploit is available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-47333 | Qualcomm Snapdragon Auto up to XR1 Platform Cryptographic Driver use after free

VulDB Recent Entries
5 months 1 week ago
A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon CCW, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WBC and Snapdragon Wearables and classified as critical. Impacted is an unknown function of the component Cryptographic Driver. Executing a manipulation can lead to use after free. The identification of this vulnerability is CVE-2025-47333. The attack can only be executed locally. There is no exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-47337 | Qualcomm Snapdragon Auto FastConnect 6700 up to WSA8845 use after free

VulDB Recent Entries
5 months 1 week ago
A vulnerability has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT and Snapdragon Mobile and classified as critical. This issue affects some unknown processing. Performing a manipulation results in use after free. This vulnerability was named CVE-2025-47337. The attack needs to be approached locally. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2025-47334 | Qualcomm Snapdragon Auto up to WSA8845H Camera buffer overflow

VulDB Recent Entries
5 months 1 week ago
A vulnerability, which was classified as critical, has been found in Qualcomm Snapdragon Auto, Snapdragon CCW, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Wearables. This affects an unknown part of the component Camera. This manipulation causes buffer overflow. This vulnerability is handled as CVE-2025-47334. It is possible to launch the attack on the local host. There is not any exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-47331 | Qualcomm Snapdragon Auto up to WSA8845H Firmware Event buffer over-read

VulDB Recent Entries
5 months 1 week ago
A vulnerability classified as problematic was found in Qualcomm Snapdragon Auto, Snapdragon CCW, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Small Cell, Snapdragon Voice & Music, Snapdragon WBC, Snapdragon Wearables and Snapdragon Wired Infrastructure and Networking. Affected by this issue is some unknown functionality of the component Firmware Event Handler. The manipulation results in buffer over-read. This vulnerability is known as CVE-2025-47331. Attacking locally is a requirement. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-47393 | Qualcomm Snapdragon Auto up to SRV1M Kernel Driver array index

VulDB Recent Entries
5 months 1 week ago
A vulnerability classified as critical has been found in Qualcomm Snapdragon Auto. Affected by this vulnerability is an unknown functionality of the component Kernel Driver. The manipulation leads to improper validation of array index. This vulnerability is traded as CVE-2025-47393. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-14625 | Altera Quartus Prime Standard/Quartus Prime Lite up to 24.1 on Windows Command Shell uncontrolled search path

VulDB Recent Entries
5 months 1 week ago
A vulnerability labeled as problematic has been found in Altera Quartus Prime Standard and Quartus Prime Lite up to 24.1 on Windows. This affects an unknown function of the component Command Shell Module. Such manipulation leads to uncontrolled search path. This vulnerability is documented as CVE-2025-14625. The attack needs to be performed locally. There is not any exploit available.
vuldb.com

CVE-2025-14614 | Altera Quartus Prime Standard/Quartus Prime Lite up to 24.1 on Windows Installer temp file

VulDB Recent Entries
5 months 1 week ago
A vulnerability identified as critical has been detected in Altera Quartus Prime Standard and Quartus Prime Lite up to 24.1 on Windows. The impacted element is an unknown function of the component Installer. This manipulation causes insecure temporary file. This vulnerability is registered as CVE-2025-14614. The attack needs to be launched locally. No exploit is available.
vuldb.com

When AI agents interact, risk can emerge without warning

Help Net Security
5 months 1 week ago

System level risks can arise when AI agents interact over time, according to new research that examines how collective behavior forms inside multi agent systems. The study finds that feedback loops, shared signals, and coordination patterns can produce outcomes that affect entire technical or social systems, even when individual agents operate within defined parameters. These effects surface through interaction itself, which places risk in the structure of the system and how agents influence one another. … More →

The post When AI agents interact, risk can emerge without warning appeared first on Help Net Security.

Sinisa Markovic

Weekly Update 485

Troy Hunt
5 months 1 week ago

15 mins and 40 seconds. That's how long it took to troubleshoot the first tech problem of 2026, and that's how far you'll need to skip through this video to hear the audio at normal volume. The problem Scott and I had is analogous

Troy Hunt

CVE-2025-38678 | Linux Kernel up to 6.16.1/6.17-rc1 netfilter privilege escalation (EUVD-2025-26497 / Nessus ID 261539)

Vuldb Updates
5 months 1 week ago
A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.16.1/6.17-rc1. Affected by this vulnerability is an unknown functionality of the component netfilter. The manipulation results in privilege escalation. This vulnerability is cataloged as CVE-2025-38678. The attack must originate from the local network. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

Managed ad