3787 matches found
CVE-2021-1963
CVE-2021-1963 describes a use-after-free in the IPA driver of Qualcomm Snapdragon SoCs (across Snapdragon Auto/Compute/Connectivity/IoT/Wearables families) caused by insufficient validation of the rule count in the filter table. The issue affects kernel components and is documented with a CVSS v3...
CVE-2021-1961
CVE-2021-1961 describes a possible buffer overflow due to lack of offset length check when updating a buffer value in Qualcomm Snapdragon family components (Auto, Compute, Connectivity, Consumer / Industrial IoT, Mobile, Voice & Music, Wearables). The CVE is referenced across multiple feeds (NVD,...
CVE-2021-1957
Improper Access Control when ACL link encryption is failed and ACL link is not disconnected during reconnection with paired device in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2021-1957
CVE-2021-1957 is a Qualcomm Bluetooth vulnerability affecting Snapdragon devices (Auto, Compute, Connectivity, Industrial IOT, Mobile, Voice & Music). The root cause is improper access control when ACL link encryption fails and the ACL link is not disconnected during reconnection with a paired de...
CVE-2021-1956
The CVE-2021-1956 entry describes an improper handling of ASB-U packets with an L2CAP channel ID by the slave host in Qualcomm Snapdragon family devices, potentially causing interference with piconet operation. The affected scope is broad across Qualcomm/Snapdragon platforms (e.g., Snapdragon Aut...
CVE-2021-1956
Improper handling of ASB-U packet with L2CAP channel ID by slave host can lead to interference with piconet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2021-1952
CVE-2021-1952 describes a buffer over-read in Qualcomm Snapdragon components due to lack of length checking in the request buffer. Affected products listed in the CVE description include Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, and Voice & Music. The issue is characte...
CVE-2021-1948
CVE-2021-1948 describes a possible out-of-bounds read due to a missing length check while parsing beacon or probe responses in Qualcomm Snapdragon families (Snapdragon Auto, Compute, Connectivity, and related lines). The published entry lists an impact of high severity (availability impact) and s...
CVE-2021-1948
Possible out of bound read due to lack of length check of data while parsing the beacon or probe response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrago...
CVE-2021-1946
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-1941
Possible buffer over read issue due to improper length check on WPA IE string sent by peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2021-1935
Possible null pointer dereference due to lack of validation check for passed pointer during key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables...
CVE-2021-1935
CVE-2021-1935 concerns Qualcomm Snapdragon closed‑source components, with a root cause of a missing validation check for a passed pointer during key import. Affected are Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, IoT, Voice & Music, and Wearables platforms. The issue ca...
CVE-2021-1934
The CVE-2021-1934 entry describes a memory corruption issue caused by an improper check when the application loader object is explicitly destructed during unloading in Qualcomm Snapdragon platforms (Auto, Compute, Connectivity, Consumer IoT, Industrial IoT). Affected components include Snapdragon...
CVE-2021-1934
Possible memory corruption due to improper check when application loader object is explicitly destructed while application is unloading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...
CVE-2021-1933
CVE-2021-1933 is an in-device vulnerability affecting Qualcomm Snapdragon platforms (Snapdragon Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Wearables). The issue stems from improper validation of invite messages with SDP bodies, enabling a UE assertion under networking conditions. ...
CVE-2021-1909
CVE-2021-1909 describes a buffer overflow caused by a missing length check of parameters in Qualcomm Snapdragon components (across Snapdragon Auto, Compute, Connectivity, and related devices). The vulnerability affects trusted/closed-source code in Qualcomm’s stack and has been documented in mult...
CVE-2021-1923
Incorrect pointer argument passed to trusted application TA could result in un-intended memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT...
CVE-2020-11264
Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
CVE-2021-1916
Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables...