3787 matches found
CVE-2019-14012
Possibility of null pointer deference as the array of video codecs from media info is referenced without null checking while processing SDP messages in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MSM8905,...
CVE-2019-14009
CVE-2019-14009 corresponds to an out-of-bounds memory access in the TZ command handler on Qualcomm Snapdragon platforms (Auto, Compute, Connectivity, IOT, Mobile, etc.) caused by improper input validation of the response length from user space. Affected components include Snapdragon devices acros...
CVE-2019-14011
Multiple Read overflows issue due to improper length check while decoding 3G attach accept/ SMS/ pdn connection reject/ esm data transport/ bearer modify context reject in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile,...
CVE-2019-14009
Out of bound memory access while processing TZ command handler due to improper input validation on response length received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...
CVE-2019-10624
CVE-2019-10624 describes an integer truncation in Snapdragon firmware that could lead to a buffer overflow when handling the vendor command, caused by copying an int to an 8-bit type across multiple Snapdragon platforms (e.g., APQ8096AU, MSM8996AU, QCA6574AU, QCN7605, Rennell, SC8180X, SDM710, SD...
CVE-2019-10623
Possible integer overflow can happen in host driver while processing user controlled string due to improper validation on data received. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in...
CVE-2019-10621
CVE-2019-10621 affects Qualcomm Snapdragon components (multiple mobile, auto, IoT variants) where a use-after-free can occur when MAP and UNMAP calls run concurrently; a data structure used by MAP may be freed by UNMAP. This is a local, high-severity issue with potential for partial confidentiali...
CVE-2019-10610
Possible buffer over read when trying to process SDP message Video media line with frame-size attribute in video Media line in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...
CVE-2019-10589
CVE-2019-10589 concerns Qualcomm’s closed‑source components and affects multiple Snapdragon SKUs (Auto, Compute, Connectivity, IoT, Mobile, etc.). The issue is a lack of length checking of a GP command response buffer, which can cause a buffer overflow during response handling in affected Snapdra...
CVE-2019-10547
When issuing IOCTL calls to ION, Memory leak can occur due to failure in unassign pages under certain conditions in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...
Intel Modular Server MFS2600KISPP Compute Module Elevation of Privilege Vulnerability
Intel Modular Server MFS2600KISPP Compute Module is a computing module from Intel Corporation USA. A security vulnerability exists in Intel Modular Server MFS2600KISPP Compute Module. An attacker in close physical proximity could exploit the vulnerability to elevate privileges...
Intel Modular Server MFS2600KISPP Compute Module Buffer Overflow Vulnerability
Intel Modular Server MFS2600KISPP Compute Module is a computing module from Intel Corporation USA. A buffer error vulnerability exists in the Intel Modular Server MFS2600KISPP Compute Module. A remote attacker could exploit this vulnerability to cause a denial of service via a specially crafted...
Intel Modular Server MFS2600KISPP Compute Module elevation of privilege vulnerability (CNVD-2020-28230)
Intel Modular Server MFS2600KISPP Compute Module is a computing module from Intel Corporation USA. A security vulnerability exists in Intel Modular Server MFS2600KISPP Compute Module, which stems from a failure of proper access control. The vulnerability can be exploited by an attacker to elevate...
CVE-2020-0577
Insufficient control flow for IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2020-0578
Improper conditions check for IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...
Buffer overflow
Buffer overflow in IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable denial of service via adjacent access...
Input validation
Improper conditions check for IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2020-0577
Intel Modular Server MFS2600KI Compute Module is affected by CVE-2020-0577 due to insufficient control flow, allowing an unauthenticated user to potentially escalate privileges via adjacent access. The Intel advisory also covers CVE-2020-0576 and CVE-2020-0578 on the same module. The advisory sta...
CVE-2020-0577
Insufficient control flow for IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2020-0576
CVE-2020-0576 affects Intel Modular Server MFS2600KISPP Compute Module. The vulnerability is a buffer overflow in the compute module that could allow an unauthenticated attacker to cause a denial of service via adjacent access. Documents specify no public exploit details and indicate a remediatio...