Qualcomm patches 3 actively exploited zero-days

Qualcomm has fixed three actively exploited vulnerabilities (CVE-2023-33106, CVE-2023-33107, CVE-2023-33063) in its Adreno GPU and Compute DSP drivers. Vulnerabilities exploited in Qualcomm GPU and DSP drivers The US-based semiconductor company has been notified by Google Threat Analysis Group and Google Project Zero that CVE-2023-33106, CVE-2023-33107, CVE-2023-33063, and CVE-2022-22071 “may be under limited, targeted exploitation”. CVE-2022-22071 is an older use-after-free vulnerability found in Automotive Android OS and patched in May 2022. Additional information about the three … More →

The post …

0 day actively exploited analysis compute cve don't miss drivers dsp exploitation exploited exploited vulnerabilities google google project zero google threat analysis group gpu hot stuff may patches project project zero qualcomm security update semiconductor threat threat analysis threat analysis group under vulnerabilities vulnerability zero-days