Skip to main content

Severity by source

NVD PRIMARY
6.6 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
Low
Availability
Low

Lifecycle Timeline

3
Analysis Generated
Mar 28, 2026 - 18:40 vuln.today
Patch released
Mar 28, 2026 - 18:40 nvd
Patch available
CVE Published
May 06, 2025 - 09:15 nvd
MEDIUM 6.6

DescriptionCVE.org

Memory corruption while sound model registration for voice activation with audio kernel driver.

AnalysisAI

Memory corruption while sound model registration for voice activation with audio kernel driver. Rated medium severity (CVSS 6.6), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Technical ContextAI

This vulnerability is classified as Out-of-bounds Write (CWE-787), which allows attackers to write data beyond allocated buffer boundaries leading to code execution or crashes. Memory corruption while sound model registration for voice activation with audio kernel driver. Affected products include: Qualcomm Mdm9628 Firmware, Qualcomm Qam8295P Firmware, Qualcomm Qca6564A Firmware, Qualcomm Qca6564Au Firmware, Qualcomm Qca6574A Firmware.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Validate write boundaries, use memory-safe languages, enable compiler protections (ASLR, stack canaries).

CVE-2026-21385 HIGH POC
7.8 Mar 02

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memo

CVE-2025-21468 HIGH
7.8 May 06

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to w

CVE-2025-21467 HIGH
7.8 May 06

Memory corruption while reading the FW response from the shared queue. Rated high severity (CVSS 7.8), this vulnerabilit

CVE-2025-21453 HIGH
7.8 May 06

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential f

CVE-2024-53014 HIGH
7.8 Mar 03

Memory corruption may occur while validating ports and channels in Audio driver. Rated high severity (CVSS 7.8), this vu

CVE-2025-21424 HIGH
7.8 Mar 03

Memory corruption while calling the NPU driver APIs concurrently. Rated high severity (CVSS 7.8), this vulnerability is

CVE-2025-27061 HIGH
7.8 Jul 08

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the vid

CVE-2025-27052 HIGH
7.8 Jul 08

Memory corruption while processing data packets in diag received from Unix clients.

CVE-2025-27042 HIGH
7.8 Jul 08

Memory corruption while processing video packets received from video firmware.

CVE-2025-59600 HIGH
7.8 Mar 02

Memory Corruption when adding user-supplied data without checking available buffer space. [CVSS 7.8 HIGH]

CVE-2025-47386 HIGH
7.8 Mar 02

Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs. [CVSS 7.8 HIGH]

CVE-2025-47379 HIGH
7.8 Mar 02

Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and

Share

CVE-2024-45581 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy