Lucene search
+L

169 matches found

cvelist
cvelist
added 2019/06/14 5:2 p.m.27 views

CVE-2018-11939

Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, QCA6574AU, SD 210/SD 212/SD 205, SD 615/16/SD 415, SD 625, SD 650/52, SD...

8.4AI score0.00198EPSS
Exploits0References1
cve
cve
added 2019/06/14 5:2 p.m.142 views

CVE-2018-11939

CVE-2018-11939 affects Qualcomm-based WLAN components (e.g., Snapdragon WLAN host/MDM platforms) where a use-after-issue in WLAN functionality occurs due to multiple ACS scan requests in parallel. The NVD entry lists a Local access vector with Low attack complexity and no authentication, yielding...

7.8CVSS7.8AI score0.00198EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2019/05/24 5:29 p.m.33 views

CVE-2019-2248

Buffer overflow can occur if invalid header tries to overwrite the existing buffer which fix size allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.8CVSS8.5AI score0.00197EPSS
Exploits0References1
nvd
nvd
added 2019/05/24 5:29 p.m.18 views

CVE-2019-2247

Possibility of double free issue while running multiple instances of smp2p test because of proper protection is missing while using global variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

7.8CVSS7.8AI score0.00198EPSS
Exploits0References1
nvd
nvd
added 2019/05/24 5:29 p.m.25 views

CVE-2018-13895

Due to the missing permissions on several content providers of the RCS app in its android manifest file will lead to an unprivileged access to phone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon...

7.8CVSS7.7AI score0.00182EPSS
Exploits0References1
nvd
nvd
added 2019/05/24 5:29 p.m.26 views

CVE-2018-11271

Improper authentication can happen on Remote command handling due to inappropriate handling of events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607,...

9.8CVSS9.8AI score0.00807EPSS
Exploits0References1
prion
prion
added 2019/05/24 5:29 p.m.23 views

Integer overflow

Possible integer underflow can happen when calculating length of elementary stream info from invalid section length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

10CVSS9.3AI score0.00988EPSS
Exploits0References1
prion
prion
added 2019/05/24 5:29 p.m.24 views

Authentication flaw

Improper authentication can happen on Remote command handling due to inappropriate handling of events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607,...

7.5CVSS9.6AI score0.00807EPSS
Exploits0References1
cve
cve
added 2019/05/24 4:44 p.m.69 views

CVE-2019-2248

CVE-2019-2248 describes a buffer overflow that can occur when an invalid header overwrites an existing buffer with a fixed-size allocation, affecting a wide range of Qualcomm Snapdragon products (e.g., Snapdragon Auto/Compute/Connectivity, Snapdragon IoT/Wearables, Snapdragon 615/16, 625, 820/820...

7.8CVSS7.9AI score0.00197EPSS
Exploits0References1Affected Software1
cve
cve
added 2019/05/24 4:44 p.m.68 views

CVE-2019-2247

CVE-2019-2247 involves a potential double-free condition triggered when running multiple smp2p tests due to missing protection for a global variable across Qualcomm Snapdragon platforms (Auto/Compute/IoT/Industrial IoT/Smart wearables and multiple SoCs). The issue affects a broad set of devices (...

7.8CVSS7.7AI score0.00198EPSS
Exploits0References1Affected Software1
cve
cve
added 2019/05/24 4:44 p.m.125 views

CVE-2018-11976

The CVE-2018-11976 issue is described in multiple sources as an ECDSA key leakage vulnerability in Qualcomm’s secure environment. Findings indicate that private keys could be exposed from the secure world to the non-secure world via the Qualcomm Secure Execution Environment (QSEE) on Snapdragon-b...

5.5CVSS5.7AI score0.00204EPSS
Exploits0References1Affected Software1
cve
cve
added 2019/05/24 4:44 p.m.85 views

CVE-2018-13886

Technical details about CVE-2018-13886 are not publicly available in the provided documents; no affected products, versions, or fixes are specified here. Monitor for updates.

10CVSS9.6AI score0.01112EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2019/05/24 4:44 p.m.36 views

CVE-2018-11976

ECDSA signature code leaks private keys from secure world to non-secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

5.8AI score0.00204EPSS
Exploits0References1
cvelist
cvelist
added 2019/05/24 4:44 p.m.28 views

CVE-2018-12004

Secure keypad is unlocked with secure display still intact in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9206, MDM9607, MDM9650,...

5.8AI score0.00204EPSS
Exploits0References1
cvelist
cvelist
added 2019/05/24 4:44 p.m.26 views

CVE-2019-2244

Possible integer underflow can happen when calculating length of elementary stream info from invalid section length which is later used to read from input buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

9.4AI score0.00988EPSS
Exploits0References1
cve
cve
added 2019/05/24 4:32 p.m.99 views

CVE-2018-11271

CVE-2018-11271 is an improper authentication vulnerability affecting Qualcomm Snapdragon platforms (broad range of Snapdragon Auto/Compute/Connectivity/IoT families and related devices). The issue relates to remote command handling caused by improper event handling, enabling potential unauthorize...

9.8CVSS9.6AI score0.00807EPSS
Exploits0References1Affected Software1
prion
prion
added 2019/05/06 11:29 p.m.18 views

Code injection

In QTEE, an incorrect fuse value can be blown in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 820, SD 820A, SD 835, SD 845, SDM429, SDM439,...

7.2CVSS7.8AI score0.00234EPSS
Exploits0References1
nvd
nvd
added 2019/05/06 11:29 p.m.26 views

CVE-2017-18131

In QTEE, an incorrect fuse value can be blown in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 820, SD 820A, SD 835, SD 845, SDM429, SDM439,...

7.8CVSS7.8AI score0.00234EPSS
Exploits0References1
prion
prion
added 2019/05/06 11:29 p.m.20 views

Command injection

A new account can be inserted into simContacts service using Android command line tool in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 820A, S...

4.9CVSS6AI score0.00211EPSS
Exploits0References1
cvelist
cvelist
added 2019/05/06 10:43 p.m.23 views

CVE-2017-18275

A new account can be inserted into simContacts service using Android command line tool in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 820A, S...

6AI score0.00211EPSS
Exploits0References1
Rows per page
Query Builder