3787 matches found
Cross site scripting
Out of bound write can happen due to lack of check of array index value while calculating it. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053,...
Design/Logic Flaw
Out of bound memory access can happen while parsing ADSP message due to lack of check of size of payload received from userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...
Command injection
Out of bound access in diag services when DCI command buffer reallocation is not done properly with required capacity in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8096AU, MDM9206, MDM9207C,...
Integer overflow
Possible integer overflow can happen in host driver while processing user controlled string due to improper validation on data received. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in...
Buffer overflow
Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar,...
Buffer overflow
Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...
Privilege escalation
Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...
Design/Logic Flaw
Possible out of bound access in WLAN handler when the received value of length in rx path is shorter than the expected value of country IE in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074,...
Buffer overflow
Possible buffer over-read in windows wlan driver function due to lack of check of length of variable received from userspace in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850...
CVE-2020-3653
CVE-2020-3653 refers to a possible buffer over-read in the Windows WLAN driver function caused by not validating the length of a value received from userspace, affecting Snapdragon Compute and Snapdragon Connectivity components (MSM8998, QCA6390, SC7180, SC8180X, SDM850). The underlying issue is ...
CVE-2020-3652
CVE-2020-3652: A buffer over-read in Windows x86 WLAN driver processing beacon/request frames due to missing length validation of a received variable. Affected components include Snapdragon Compute and Snapdragon Connectivity (MSM8998, QCA6390, SC7180, SC8180X, SDM850). Impacted due to potential ...
CVE-2019-14135
CVE-2019-14135 describes a vulnerability: an integer overflow that can overflow to a buffer overflow in WLAN parsing of nonstandard NAN IE messages. Reported across Qualcomm Snapdragon/wlan components (e.g., APQ8009, QCA4xxx, SDM platforms) and affecting Qualcomm closed-source components and rela...
CVE-2020-3652
Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850...
CVE-2019-14134
CVE-2019-14134 describes a possible out-of-bounds access in the WLAN handler when the length field in the RX path is shorter than the expected country IE value in Qualcomm Snapdragon platforms (Compute, Consumer IOT, Industrial IOT, Mobile, and Wired Infrastructure/Networking). Affected products ...
CVE-2019-14127
Possible buffer overflow while playing mkv clip due to lack of validation of atom size buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064,...
CVE-2019-14131
Out of bound write can occur in radio measurement request if STA receives multiple invalid rrm measurement request from AP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8096AU, MSM8998, Nicoba...
CVE-2019-14104
CVE-2019-14104 describes a slab-out-of-bounds access caused by a missing null check before dereferencing the context pointer in Snapdragon Compute/IoT/Mobile components (APQ8053, SC8180X, SDX55, SM8150). Affected products include Snapdragon Compute, Snapdragon Consumer IoT, and Snapdragon Mobile ...
CVE-2019-14104
Slab-out-of-bounds access can occur if the context pointer is invalid due to lack of null check on pointer before accessing it in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile in APQ8053, SC8180X, SDX55, SM8150...
CVE-2019-14033
Multiple Read overflows issue due to improper length check while decoding tau reject/tau accept/detach request/attach reject/attach accept in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096,...
CVE-2019-14020
CVE-2019-14020 describes “Multiple Read overflows” caused by improper length checks when decoding several Qualcomm/Snapdragon protocol messages (dedicated_eps_bearer_req, act_def_context_req, cs_serv_notification, emm_info, guti_realloc_cmd) affecting a wide range of Snapdragon-based devices (Aut...