3787 matches found
CVE-2021-30302
Improper authentication of EAP WAPI EAPOL frames from unauthenticated user can lead to information disclosure in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired...
CVE-2021-30297
Possible out of bound read due to improper validation of packet length while handling data transfer in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...
CVE-2021-30297
CVE-2021-30297 is a Qualcomm/ Snapdragon VR service vulnerability: an out-of-bounds read caused by improper validation of the data transfer packet length in the VR service. Affected are Snapdragon platforms including Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, and Wearables. CVSS d...
CVE-2021-30292
Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...
CVE-2021-30292
CVE-2021-30292 relates to a memory corruption issue in Qualcomm Snapdragon product lines (including Auto/Compute/Connectivity, Consumer/Industrial IoT, Wearables). The root cause is lack of validation of client data used for memory allocation, which can lead to memory corruption. Publicly availab...
CVE-2021-30291
Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...
CVE-2021-30288
CVE-2021-30288 describes a stack overflow due to improper TLV length checks when copying TLVs to a local stack variable in Qualcomm/Snapdragon components. Connected sources confirm this is a Qualcomm/Android ecosystem issue affecting multiple Snapdragon sub-families (e.g., Auto/Compute/Connectivi...
CVE-2021-30258
Possible buffer overflow due to improper size calculation of payload received in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...
CVE-2021-30257
Possible out of bound read or write in VR service due to lack of validation of DSP selection values in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...
CVE-2021-30257
CVE-2021-30257 describes a potential out-of-bounds read or write in the VR service caused by insufficient validation of DSP selection values in Qualcomm’s Snapdragon platforms (Compute, Connectivity, and IoT variants). The issue is rooted in DSP value handling within VR services and is documented...
CVE-2021-30256
Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...
CVE-2021-30256
CVE-2021-30256 describes a stack overflow caused by improper validation of the camera name length before copying the name in VR Service on Qualcomm/Snapdragon platforms (Snapdragon Compute, Connectivity, Consumer IoT, Industrial IoT). Connected sources corroborate exposure within Qualcomm compone...
CVE-2021-1985
CVE-2021-1985 affects Qualcomm Snapdragon devices via the QVR Service configuration. Root cause: lack of proper data length checks leads to a buffer over-read. Impact described as local access with high confidentiality and availability impact; no public exploit details are provided in the supplie...
CVE-2021-1984
CVE-2021-1984 describes a buffer overflow caused by improper validation of an index value when processing the plugin block in Qualcomm Snapdragon platforms. The vulnerability affects multiple Snapdragon lines, including Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, and Wea...
CVE-2021-1983
CVE-2021-1983 concerns a buffer overflow in Qualcomm Snapdragon VR service when processing a write request, attributed to improper handling of negative data length. Public records identify Snapdragon lines affected (Snapdragon Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Wearables)....
CVE-2021-1980
CVE-2021-1980 corresponds to a Qualcomm vulnerability: a possible buffer over-read due to a missing length check when parsing beacon IE responses in Snapdragon-related platforms (Auto, Compute, Connectivity, and other Snapdragon SKUs). The issue is triggered via network access and has high to cri...
CVE-2021-1977
CVE-2021-1977 describes a buffer over-read caused by improper validation of frame length during AEAD decryption in ASSOC response, affecting Qualcomm Snapdragon-based devices (Auto, Compute, Connectivity, Consumer/IOT/Industrial IOT, Mobile, etc.). The vulnerability arises from frame-length valid...
CVE-2021-1967
The CVE-2021-1967 issue affects Qualcomm Snapdragon components (Auto/Compute/Connectivity/IoT wearables, etc.). It corresponds to a stack buffer overflow caused by insufficient validation of the maximum number of post NAN discovery attributes during processing of a NAN Match event. Impact is desc...
CVE-2021-1967
Possible stack buffer overflow due to lack of check on the maximum number of post NAN discovery attributes while processing a NAN Match event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...
CVE-2021-1966
CVE-2021-1966 is a Qualcomm Snapdragon-related buffer overflow caused by a missing length check when copying between source and destination buffers. The vulnerability affects multiple Snapdragon families (Auto, Compute, Consumer IOT, Industrial IOT, Mobile, and Voice & Music) and is described as ...