What the vulnerability does
01Description
Memory corruption may occur while attaching VM when the HLOS retains access to VM.
CVSS base score
7.8/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
June 3, 2025
CVE published
June 3, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2021-24859 User Meta Shortcodes <= 0.5 - Contributor+ Unauthorized Arbitrary User Metadata Access
CVE-2021-34627 WP Upload Restriction <= 2.2.3 - Missing Access Control in getSelectedMimeTypesByRole function
CVE-2024-8805 BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability
CVE-2023-52712
CVE-2023-28844 User without download rights can download older version of that file in nextcloud server
