Home › Vendors › Qualcomm › Sa8255p FirmwareQualcomm Sa8255p Firmware — known CVE vulnerabilities Every CVE whose affected-product data names Qualcomm Sa8255p Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200) CVE-2023-43553 — CVSS 9.8 (critical) : Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.CVE-2023-33028 — CVSS 9.8 (critical) : Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.CVE-2024-45569 — CVSS 9.8 (critical) : Memory corruption while parsing the ML IE due to invalid frame content.CVE-2023-43552 — CVSS 9.8 (critical) : Memory corruption while processing MBSSID beacon containing several subelement IE.CVE-2025-21483 — CVSS 9.8 (critical) : Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.CVE-2023-28578 — CVSS 9.3 (critical) : Memory corruption in Core Services while executing the command for removing a single event listener.CVE-2023-33030 — CVSS 9.3 (critical) : Memory corruption in HLOS while running playready use-case.CVE-2023-43538 — CVSS 9.3 (critical) : Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.CVE-2023-33072 — CVSS 9.3 (critical) : Memory corruption in Core while processing control functions.CVE-2023-28574 — CVSS 9.0 (critical) : Memory corruption in core services when Diag handler receives a command to configure event listeners.CVE-2025-47372 — CVSS 9.0 (critical) : Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.CVE-2024-38420 — CVSS 8.8 (high) : Memory corruption while configuring a Hypervisor based input virtual device.CVE-2023-21673 — CVSS 8.7 (high) : Improper Access to the VM resource manager can lead to Memory Corruption.CVE-2023-43520 — CVSS 8.6 (high) : Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.CVE-2023-43534 — CVSS 8.6 (high) : Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point.CVE-2024-21481 — CVSS 8.4 (high) : Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.CVE-2024-23351 — CVSS 8.4 (high) : Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.CVE-2024-23354 — CVSS 8.4 (high) : Memory corruption when the IOCTL call is interrupted by a signal.CVE-2023-33119 — CVSS 8.4 (high) : Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.CVE-2024-23365 — CVSS 8.4 (high) : Memory corruption while releasing shared resources in MinkSocket listener thread.CVE-2023-21672 — CVSS 8.4 (high) : Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.CVE-2023-28547 — CVSS 8.4 (high) : Memory corruption in SPS Application while requesting for public key in sorter TA.CVE-2023-43514 — CVSS 8.4 (high) : Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.CVE-2024-23372 — CVSS 8.4 (high) : Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.CVE-2024-23373 — CVSS 8.4 (high) : Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.CVE-2024-23380 — CVSS 8.4 (high) : Memory corruption while handling user packets during VBO bind operation.CVE-2024-23381 — CVSS 8.4 (high) : Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU.CVE-2024-23382 — CVSS 8.4 (high) : Memory corruption while processing graphics kernel driver request to create DMA fence.CVE-2024-23383 — CVSS 8.4 (high) : Memory corruption when kernel driver attempts to trigger hardware fences.CVE-2024-23384 — CVSS 8.4 (high) : Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.CVE-2023-43517 — CVSS 8.4 (high) : Memory corruption in Automotive Multimedia due to improper access control in HAB.CVE-2025-47345 — CVSS 8.4 (high) : Cryptographic issue may occur while encrypting license data.CVE-2024-38399 — CVSS 8.4 (high) : Memory corruption while processing user packets to generate page faults.CVE-2023-33029 — CVSS 8.4 (high) : Memory corruption in DSP Service during a remote call from HLOS to DSP.CVE-2023-33088 — CVSS 8.4 (high) : Memory corruption when processing cmd parameters while parsing vdev.CVE-2022-33307 — CVSS 8.4 (high) : Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.CVE-2023-33094 — CVSS 8.4 (high) : Memory corruption while running VK synchronization with KASAN enabled.CVE-2024-21461 — CVSS 8.4 (high) : Memory corruption while performing finish HMAC operation when context is freed by keymaster.CVE-2023-22667 — CVSS 8.4 (high) : Memory Corruption in Audio while allocating the ion buffer during the music playback.CVE-2023-33106 — CVSS 8.4 (high) — actively exploited : Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.CVE-2023-33107 — CVSS 8.4 (high) — actively exploited : Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.CVE-2023-33108 — CVSS 8.4 (high) : Memory corruption in Graphics Driver when destroying a context with KGSL_GPU_AUX_COMMAND_TIMELINE objects queued.CVE-2022-40507 — CVSS 8.4 (high) : Memory corruption due to double free in Core while mapping HLOS address to the list.CVE-2024-21471 — CVSS 8.4 (high) : Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.CVE-2024-21472 — CVSS 8.4 (high) : Memory corruption in Kernel while handling GPU operations.CVE-2023-33113 — CVSS 8.4 (high) : Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.CVE-2023-33053 — CVSS 8.4 (high) : Memory corruption in Kernel while parsing metadata.CVE-2024-33028 — CVSS 8.4 (high) : Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.CVE-2024-33034 — CVSS 8.4 (high) : Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory…CVE-2024-33035 — CVSS 8.4 (high) : Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.CVE-2023-43531 — CVSS 8.4 (high) : Memory corruption while verifying the serialized header when the key pairs are generated.CVE-2023-33074 — CVSS 8.4 (high) : Memory corruption in Audio when SSR event is triggered after music playback is stopped.CVE-2024-45555 — CVSS 8.4 (high) : Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized…CVE-2024-33044 — CVSS 8.4 (high) : Memory corruption while Configuring the SMR/S2CR register in Bypass mode.CVE-2024-33045 — CVSS 8.4 (high) : Memory corruption when BTFM client sends new messages over Slimbus to ADSP.CVE-2023-33022 — CVSS 8.4 (high) : Memory corruption in HLOS while invoking IOCTL calls from user-space.CVE-2024-33056 — CVSS 8.4 (high) : Memory corruption when allocating and accessing an entry in an SMEM partition continuously.CVE-2023-33023 — CVSS 8.4 (high) : Memory corruption while processing finish_sign command to pass a rsp buffer.CVE-2023-24853 — CVSS 8.4 (high) : Memory Corruption in HLOS while registering for key provisioning notify.CVE-2024-33060 — CVSS 8.4 (high) : Memory corruption when two threads try to map and unmap a single node simultaneously.CVE-2023-43546 — CVSS 8.4 (high) : Memory corruption while invoking HGSL IOCTL context create.CVE-2023-43547 — CVSS 8.4 (high) : Memory corruption while invoking IOCTLs calls in Automotive Multimedia.CVE-2023-24852 — CVSS 8.4 (high) : Memory Corruption in Core due to secure memory access by user while loading modem image.CVE-2023-33021 — CVSS 8.4 (high) : Memory corruption in Graphics while processing user packets for command submission.CVE-2024-33021 — CVSS 8.4 (high) : Memory corruption while processing IOCTL call to set metainfo.CVE-2024-33022 — CVSS 8.4 (high) : Memory corruption while allocating memory in HGSL driver.CVE-2024-33023 — CVSS 8.4 (high) : Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.CVE-2024-53020 — CVSS 8.2 (high) : Information disclosure may occur while decoding the RTP packet with invalid header extension from network.CVE-2024-38408 — CVSS 8.2 (high) : Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.CVE-2024-53026 — CVSS 8.2 (high) : Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.CVE-2024-49839 — CVSS 8.2 (high) : Memory corruption during management frame processing due to mismatch in T2LM info element.CVE-2024-49838 — CVSS 8.2 (high) : Information disclosure while parsing the OCI IE with invalid length.CVE-2025-21487 — CVSS 8.2 (high) : Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the…CVE-2025-21427 — CVSS 8.2 (high) : Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.CVE-2024-45552 — CVSS 8.2 (high) : Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC…CVE-2024-33073 — CVSS 8.2 (high) : Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.CVE-2025-21484 — CVSS 8.2 (high) : Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.CVE-2024-53021 — CVSS 8.2 (high) : Information disclosure may occur while processing goodbye RTCP packet from network.CVE-2023-28585 — CVSS 8.2 (high) : Memory corruption while loading an ELF segment in TEE Kernel.CVE-2026-24088 — CVSS 8.2 (high) : Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader.CVE-2023-28545 — CVSS 8.2 (high) : Memory corruption in TZ Secure OS while loading an app ELF.CVE-2025-47357 — CVSS 8.0 (high) : Information Disclosure when a user-level driver performs QFPROM read or write operations on Fuse regions.CVE-2025-21443 — CVSS 7.8 (high) : Memory corruption while processing message content in eAVB.CVE-2025-21442 — CVSS 7.8 (high) : Memory corruption while transmitting packet mapping information with invalid header payload size.CVE-2025-21437 — CVSS 7.8 (high) : Memory corruption while processing memory map or unmap IOCTL operations simultaneously.CVE-2025-21432 — CVSS 7.8 (high) : Memory corruption while retrieving the CBOR data from TA.CVE-2024-21465 — CVSS 7.8 (high) : Memory corruption while processing key blob passed by the user.CVE-2025-21424 — CVSS 7.8 (high) : Memory corruption while calling the NPU driver APIs concurrently.CVE-2024-53032 — CVSS 7.8 (high) : Memory corruption may occur in keyboard virtual device due to guest VM interaction.CVE-2024-53031 — CVSS 7.8 (high) : Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.CVE-2024-21475 — CVSS 7.8 (high) : Memory corruption when the payload received from firmware is not as per the expected protocol size.CVE-2024-53030 — CVSS 7.8 (high) : Memory corruption while processing input message passed from FE driver.CVE-2024-53029 — CVSS 7.8 (high) : Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.CVE-2024-53028 — CVSS 7.8 (high) : Memory corruption may occur while processing message from frontend during allocation.CVE-2024-23355 — CVSS 7.8 (high) : Memory corruption when keymaster operation imports a shared key.CVE-2024-23356 — CVSS 7.8 (high) : Memory corruption during session sign renewal request calls in HLOS.CVE-2024-53024 — CVSS 7.8 (high) : Memory corruption in display driver while detaching a device.CVE-2024-53023 — CVSS 7.8 (high) : Memory corruption may occur while accessing a variable during extended back to back tests.CVE-2024-53022 — CVSS 7.8 (high) : Memory corruption may occur during communication between primary and guest VM.CVE-2024-23368 — CVSS 7.8 (high) : Memory corruption when allocating and accessing an entry in an SMEM partition.CVE-2024-23369 — CVSS 7.8 (high) : Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.CVE-2024-53014 — CVSS 7.8 (high) : Memory corruption may occur while validating ports and channels in Audio driver.CVE-2024-53012 — CVSS 7.8 (high) : Memory corruption may occur due to improper input validation in clock device.CVE-2024-53010 — CVSS 7.8 (high) : Memory corruption may occur while attaching VM when the HLOS retains access to VM.CVE-2024-49845 — CVSS 7.8 (high) : Memory corruption during the FRS UDS generation process.CVE-2024-49844 — CVSS 7.8 (high) : Memory corruption while triggering commands in the PlayReady Trusted application.CVE-2024-49842 — CVSS 7.8 (high) : Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.CVE-2024-49841 — CVSS 7.8 (high) : Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.CVE-2024-49837 — CVSS 7.8 (high) : Memory corruption while reading CPU state data during guest VM suspend.CVE-2024-49835 — CVSS 7.8 (high) : Memory corruption while reading secure file.CVE-2024-49834 — CVSS 7.8 (high) : Memory corruption while power-up or power-down sequence of the camera sensor.CVE-2024-49833 — CVSS 7.8 (high) : Memory corruption can occur in the camera when an invalid CID is used.CVE-2024-45584 — CVSS 7.8 (high) : Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.CVE-2024-33042 — CVSS 7.8 (high) : Memory corruption when Alternative Frequency offset value is set to 255.CVE-2024-45553 — CVSS 7.8 (high) : Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another…CVE-2024-43059 — CVSS 7.8 (high) : Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.CVE-2024-33052 — CVSS 7.8 (high) : Memory corruption when user provides data for FM HCI command control operations.CVE-2024-38424 — CVSS 7.8 (high) : Memory corruption during GNSS HAL process initialization.CVE-2024-38422 — CVSS 7.8 (high) : Memory corruption while processing voice packet with arbitrary data received from ADSP.CVE-2024-38421 — CVSS 7.8 (high) : Memory corruption while processing GPU commands.CVE-2024-38419 — CVSS 7.8 (high) : Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.CVE-2024-38402 — CVSS 7.8 (high) : Memory corruption while processing IOCTL call for getting group info.CVE-2026-24082 — CVSS 7.8 (high) : Memory Corruption when copying data from a freed source while executing performance counter deselect operation.CVE-2026-21385 — CVSS 7.8 (high) — actively exploited : Memory corruption while using alignments for memory allocation.CVE-2025-59606 — CVSS 7.8 (high) : Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization.CVE-2025-59604 — CVSS 7.8 (high) : Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.CVE-2025-59600 — CVSS 7.8 (high) : Memory Corruption when adding user-supplied data without checking available buffer space.CVE-2025-47398 — CVSS 7.8 (high) : Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.CVE-2025-47397 — CVSS 7.8 (high) : Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.CVE-2023-21656 — CVSS 7.8 (high) : Memory corruption in WLAN HOST while receiving an WMI event from firmware.CVE-2023-21657 — CVSS 7.8 (high) : Memoru corruption in Audio when ADSP sends input during record use case.CVE-2025-47393 — CVSS 7.8 (high) : Memory corruption when accessing resources in kernel driver.CVE-2025-47391 — CVSS 7.8 (high) : Memory corruption while processing a frame request from user.CVE-2023-21670 — CVSS 7.8 (high) : Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.CVE-2023-22386 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.CVE-2023-22387 — CVSS 7.8 (high) : Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.CVE-2025-47389 — CVSS 7.8 (high) : Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.CVE-2023-24850 — CVSS 7.8 (high) : Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.CVE-2023-24851 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while parsing QMI response message from firmware.CVE-2023-24854 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.CVE-2025-47386 — CVSS 7.8 (high) : Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.CVE-2023-28541 — CVSS 7.8 (high) : Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.CVE-2023-28542 — CVSS 7.8 (high) : Memory Corruption in WLAN HOST while fetching TX status information.CVE-2023-28546 — CVSS 7.8 (high) : Memory Corruption in SPS Application while exporting public key in sorter TA.CVE-2023-28550 — CVSS 7.8 (high) : Memory corruption in MPP performance while accessing DSM watermark using external memory address.CVE-2025-47385 — CVSS 7.8 (high) : Memory Corruption when accessing trusted execution environment without proper privilege check.CVE-2025-47382 — CVSS 7.8 (high) : Memory corruption while loading an invalid firmware in boot loader.CVE-2025-47381 — CVSS 7.8 (high) : Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.CVE-2025-47379 — CVSS 7.8 (high) : Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of…CVE-2025-47377 — CVSS 7.8 (high) : Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.CVE-2023-28573 — CVSS 7.8 (high) : Memory corruption in WLAN HAL while parsing WMI command parameters.CVE-2025-47376 — CVSS 7.8 (high) : Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.CVE-2025-47375 — CVSS 7.8 (high) : Memory corruption while handling different IOCTL calls from the user-space simultaneously.CVE-2023-28587 — CVSS 7.8 (high) : Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.CVE-2025-47373 — CVSS 7.8 (high) : Memory Corruption when accessing buffers with invalid length during TA invocation.CVE-2023-33017 — CVSS 7.8 (high) : Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.CVE-2025-47365 — CVSS 7.8 (high) : Memory corruption while processing large input data from a remote source via a communication interface.CVE-2025-47361 — CVSS 7.8 (high) : Memory corruption when triggering a subsystem crash with an out-of-range identifier.CVE-2023-33031 — CVSS 7.8 (high) : Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.CVE-2023-33035 — CVSS 7.8 (high) : Memory corruption while invoking callback function of AFE from ADSP.CVE-2025-47360 — CVSS 7.8 (high) : Memory corruption while processing client message during device management.CVE-2025-47353 — CVSS 7.8 (high) : Memory corruption while processing request sent from GVM.CVE-2023-33055 — CVSS 7.8 (high) : Memory Corruption in Audio while invoking callback function in driver from ADSP.CVE-2023-33059 — CVSS 7.8 (high) : Memory corruption in Audio while processing the VOC packet data from ADSP.CVE-2025-47348 — CVSS 7.8 (high) : Memory corruption while processing identity credential operations in the trusted application.CVE-2023-33063 — CVSS 7.8 (high) — actively exploited : Memory corruption in DSP Services during a remote call from HLOS to DSP.CVE-2025-47347 — CVSS 7.8 (high) : Memory corruption while processing control commands in the virtual memory management interface.CVE-2025-47346 — CVSS 7.8 (high) : Memory corruption while processing a secure logging command in the trusted application.CVE-2025-47339 — CVSS 7.8 (high) : Memory corruption while deinitializing a HDCP session.CVE-2025-47329 — CVSS 7.8 (high) : Memory corruption while handling invalid inputs in application info setup.CVE-2025-47323 — CVSS 7.8 (high) : Memory corruption while routing GPR packets between user and root when handling large data packet.CVE-2025-47322 — CVSS 7.8 (high) : Memory corruption while handling IOCTL calls to set mode.CVE-2025-47321 — CVSS 7.8 (high) : Memory corruption while copying packets received from unix clients.CVE-2023-33079 — CVSS 7.8 (high) : Memory corruption in Audio while running invalid audio recording from ADSP.CVE-2025-47320 — CVSS 7.8 (high) : Memory corruption while processing MFC channel configuration during music playback.CVE-2023-33085 — CVSS 7.8 (high) : Memory corruption in wearables while processing data from AON.CVE-2023-33087 — CVSS 7.8 (high) : Memory corruption in Core while processing RX intent request.CVE-2025-47315 — CVSS 7.8 (high) : Memory corruption while handling repeated memory unmap requests from guest VM.CVE-2025-47314 — CVSS 7.8 (high) : Memory corruption while processing data sent by FE driver.CVE-2025-27077 — CVSS 7.8 (high) : Memory corruption while processing message in guest VM.CVE-2025-27070 — CVSS 7.8 (high) : Memory corruption while performing encryption and decryption commands.CVE-2025-27062 — CVSS 7.8 (high) : Memory corruption while handling client exceptions, allowing unauthorized channel access.CVE-2025-27061 — CVSS 7.8 (high) : Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.CVE-2023-33115 — CVSS 7.8 (high) : Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.CVE-2023-33117 — CVSS 7.8 (high) : Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE…CVE-2023-33118 — CVSS 7.8 (high) : Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter…CVE-2023-33120 — CVSS 7.8 (high) : Memory corruption in Audio when memory map command is executed consecutively in ADSP.CVE-2025-27054 — CVSS 7.8 (high) : Memory corruption while processing a malformed license file during reboot.CVE-2023-43513 — CVSS 7.8 (high) : Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary…CVE-2025-27053 — CVSS 7.8 (high) : Memory corruption during PlayReady APP usecase while processing TA commands.CVE-2025-27052 — CVSS 7.8 (high) : Memory corruption while processing data packets in diag received from Unix clients.CVE-2025-27043 — CVSS 7.8 (high) : Memory corruption while processing manipulated payload in video firmware.CVE-2025-27042 — CVSS 7.8 (high) : Memory corruption while processing video packets received from video firmware.CVE-2025-27032 — CVSS 7.8 (high) : memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.CVE-2025-21481 — CVSS 7.8 (high) : Memory corruption while performing private key encryption in trusted application.CVE-2025-21460 — CVSS 7.8 (high) : Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously.CVE-2025-21458 — CVSS 7.8 (high) : Memory corruption when IOCTL interface is called to map and unmap buffers simultaneously.CVE-2023-43542 — CVSS 7.8 (high) : Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.CVE-2025-21456 — CVSS 7.8 (high) : Memory corruption while processing IOCTL command when multiple threads are called to map/unmap buffer concurrently.CVE-2025-21453 — CVSS 7.8 (high) : Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.