CVE-2021-35126

The CVE-2021-35126 entry describes a memory corruption vulnerability in Qualcomm Snapdragon DSP service caused by improper validation of input parameters across Snapdragon Auto, Compute, Connectivity, Industrial IOT, and Mobile lines. The issue affects multiple Qualcomm products as listed in the ...

CVE-2021-35100

Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2021-35100

CVE-2021-35100 is a buffer over-read in Qualcomm Snapdragon components caused by improper calculation of string length when parsing Id3 tags. Affected products include Snapdragon Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wearables. The vulnerability ste...

CVE-2021-35081

Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

CVE-2021-35071

Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired...

CVE-2021-35071

CVE-2021-35071 is a buffer over-read in Qualcomm Snapdragon components caused by lack of size validation when copying data from the DBR buffer to the RX buffer, leading to Denial of Service. Affected products span Snapdragon Auto, Compute, Connectivity, Industrial IoT, Mobile, Wearables, and Wire...

CVE-2021-30350

CVE-2021-30350 describes a memory-corruption vulnerability caused by lack of MBN header size verification against input buffers in Qualcomm Snapdragon family components (Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, Wearables). The issue affects Qualcomm closed-source components and ...

CVE-2021-30350

Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

CVE-2021-30349

CVE-2021-30349 describes an improper access control sequence in Qualcomm/ Snapdragon firmware where after memory allocation the AC database can be accessed out of intended order, potentially causing memory corruption in multiple Snapdragon products (Auto, Compute, Connectivity, Consumer IOT, Indu...

CVE-2021-30347

Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2021-30347

CVE-2021-30347 maps to a Qualcomm/Snapdragon issue where an improper integrity check after receiving a valid RRC command can cause a race between PDCP and RRC tasks. Affected products include Snapdragon Auto/Compute/Connectivity/Industrial IOT/Mobile and various Qualcomm closed‑source components;...

CVE-2021-30344

CVE-2021-30344 involves improper authorization of a replayed LTE security mode command that can cause a denial of service in Qualcomm Snapdragon devices. The vulnerability is described under Qualcomm closed-source components; public details on affected products, versions, or a concrete fix are no...

CVE-2021-30343

CVE-2021-30343 describes an improper integrity check in Qualcomm closed‑source components (Qualcomm Snapdragon family) that can trigger a race condition between PDCP and RRC after receiving a valid RRC Command packet. Various Snapdragon lines (Auto/Compute/Connectivity/Industrial IOT/Mobile) are ...

CVE-2021-30342

CVE-2021-30342 is a Qualcomm closed‑source component issue described as an improper integrity check that can cause a race condition between the PDCP and RRC tasks after a valid RRC Command packet is received. Documents indicate an impact in Snapdragon-family devices (Auto/Compute/Consumer IoT/Ind...

CVE-2021-30341

Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

CVE-2021-30341

CVE-2021-30341 describes memory corruption caused by improper buffer size validation of DSM packets in Qualcomm/Snapdragon components (Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Wearables). The CVSS v3.1 base score is 9.8 (CRITICAL) with NETWORK ...

CVE-2021-30340

CVE-2021-30340 is a Qualcomm-related issue described as a reachable assertion caused by improper validation of the coreset in PDCCH configuration in SA mode. Connected sources identify the vulnerability in Qualcomm closed-source components across Snapdragon Auto/Compute/Connectivity/Industrial IO...

CVE-2021-30340

Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2021-30338

CVE-2021-30338 affects Qualcomm components (TrustZone memory transfer interface) with improper input validation leading to potential information disclosure in Snapdragon Compute. Root cause: input validation weakness in the TrustZone memory transfer interface. Impact: information disclosure; loca...

CVE-2021-30338

Improper input validation in TrustZone memory transfer interface can lead to information disclosure in Snapdragon Compute...