3787 matches found
CVE-2021-30353
Improper validation of function pointer type with actual function signature can lead to assertion in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables...
Input validation
Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
Input validation
Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...
Design/Logic Flaw
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...
Integer overflow
Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...
Race condition
Use after free condition can occur in wired connectivity due to a race condition while creating and deleting folders in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
Null pointer dereference
Possible null pointer dereference due to improper validation of APE clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables...
CVE-2021-30330
Possible null pointer dereference due to improper validation of APE clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables...
CVE-2021-30330
CVE-2021-30330 describes a possible null pointer dereference caused by improper validation of an APE clip in Qualcomm Snapdragon components (Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, Voice & Music, Wearables). The issue affects Snapdragon-based devices and is reported with CVSSv3...
CVE-2021-30319
Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...
CVE-2021-30319
CVE-2021-30319 describes a possible integer overflow due to improper validation of command length parameters while processing WMI commands in Qualcomm Snapdragon components (Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Mobile, Voice & Music). The r...
CVE-2021-30314
Lack of validation for third party application accessing the service can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
CVE-2021-30311
Possible heap overflow due to lack of index validation before allocating and writing to heap buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-30311
Technical details of CVE-2021-30311 are not publicly provided in the connected documents. The available sources reiterate the heap overflow description for Snapdragon components. Monitor for updates as more specifics (affected products/versions/fix) may be published.
CVE-2021-30308
CVE-2021-30308 is a high-severity buffer overflow in Qualcomm Snapdragon closed‑source components (Snapdragon Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Mobile) due to improper validation of buffer size while printing HARQ memory partition details. The vulnerability is documented ...
CVE-2021-30307
The CVE-2021-30307 issue affects Qualcomm Snapdragon components (Auto, Compute, Connectivity, Consumer IoT, Industrial IoT). A DNS DNS client handling PTR, NAPTR, or SRV queries may improperly validate DNS responses, leading to denial of service. Root cause: DNS response validation weakness in af...
CVE-2021-30300
CVE-2021-30300: Qualcomm/Qualcomm Snapdragon components have a DoS due to incorrect decoding of hex data for the SIB2 OTA message and the assignment of a garbage value to the best-guess choice while processing the SRS configuration. The PT-2022-9973 entry documents affected product families (Snap...
CVE-2021-30287
Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-30287
CVE-2021-30287 is a Qualcomm/Qualcomm‑chip vulnerability affecting Snapdragon families (Auto/Compute/Connectivity/Industrial IOT/Mobile) due to improper validation of symbols configured for PDCCH monitoring. Primary sources (NVD, Red Hat, CVE CVE listings, and Qualcomm bulletin references) classi...
CVE-2021-30285
CVE-2021-30285: Qualcomm closed-source Hypervisor memory-region validation flaw leads to incorrect region mapping. CNNVD details a wide set of affected Qualcomm products (AR8031/AR8035, CSRA66xx, FSM1005x/56x, MDM9150, qca4xxx/6xxx series, SAx/SDx families, etc.) with the root cause being imprope...