Lucene search
+L

446 matches found

CNVD
CNVD
added 2020/08/05 12:0 a.m.2 views

Qualcomm MSM8909W Path Traversal Vulnerability

The Qualcomm MSM8909W is a central processing unit CPU product from Qualcomm Incorporated USA. A path traversal vulnerability exists in DSP Services in the Qualcomm MSM8909W, which stems from a lack of checks on user data. An attacker could exploit the vulnerability to overwrite or read arbitrary...

7.8CVSS6.8AI score0.0019EPSS
Exploits0References1
Prion
Prion
added 2020/07/30 12:15 p.m.26 views

Command injection

Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

3.6CVSS7.3AI score0.00186EPSS
Exploits0References2
Prion
Prion
added 2020/07/30 12:15 p.m.25 views

Design/Logic Flaw

When kernel thread unregistered listener, Use after free issue happened as the listener clients private data has been already freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

4.6CVSS7.9AI score0.00199EPSS
Exploits0References2
Prion
Prion
added 2020/07/30 12:15 p.m.18 views

Buffer overflow

Device misbehavior may be observed when incorrect offset, length or number of buffers is passed by user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, MDM9206, MDM9207C...

4.6CVSS8.3AI score0.00199EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.32 views

CVE-2020-3700

Possible out of bounds read due to a missing bounds check and could lead to local information disclosure in the wifi driver with no additional execution privileges needed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice ...

7.2AI score0.01096EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.28 views

CVE-2020-3688

Possible buffer overflow while parsing mp4 clip with corrupted sample atoms due to improper validation of index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

9.7AI score0.00879EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.36 views

CVE-2019-14099

Device misbehavior may be observed when incorrect offset, length or number of buffers is passed by user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, MDM9206, MDM9207C...

8.3AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.42 views

CVE-2019-14093

Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

7.7AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.36 views

CVE-2019-10580

When kernel thread unregistered listener, Use after free issue happened as the listener clients private data has been already freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

7.9AI score0.00199EPSS
Exploits0References1
NVD
NVD
added 2020/06/22 7:15 a.m.19 views

CVE-2020-3662

Buffer overflow can occur while parsing eac3 header while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ801...

9.8CVSS0.00938EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.29 views

CVE-2020-3660

Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

9.5AI score0.00926EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.36 views

CVE-2020-3635

Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8920, MSM8937,...

7.9AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.29 views

CVE-2020-3626

Any application can bind to it and exercise the APIs due to no protection for AIDL uimlpaservice in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8905, MSM8909W, MSM8917, MSM8920,...

7.7AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.33 views

CVE-2020-3614

Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

9.4AI score0.00707EPSS
Exploits0References1
CVE
CVE
added 2020/06/22 7:10 a.m.63 views

CVE-2020-3614

CVE-2020-3614 is a buffer-overflow risk reported for Qualcomm Snapdragon firmware. The description in multiple sources specifies a lack of length check before copying a frame into a local buffer, affecting a broad set of Snapdragon products (Auto, Compute, Connectivity, IoT variants, Wearables, a...

9.8CVSS9.2AI score0.00707EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/22 7:10 a.m.58 views

CVE-2019-14094

CVE-2019-14094 describes an integer overflow in the diag command handler when a large value is supplied for the number of tasks in request packets. Affected products are Qualcomm Snapdragon families including Snapdragon Auto, Compute, Connectivity, etc., across numerous SoCs (e.g., APQ8009, APQ80...

7.8CVSS8.5AI score0.0019EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.31 views

CVE-2019-14047

While IPA driver processes route add rule IOCTL, there is no input validation of the rule ID prior to adding the rule to the IPA HW commit list in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

7.7AI score0.00212EPSS
Exploits0References1
NVD
NVD
added 2020/06/02 3:15 p.m.31 views

CVE-2020-3641

Integer overflow may occur if atom size is less than atom offset as there is improper validation of atom size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096A...

10CVSS9.6AI score0.01057EPSS
Exploits0References1
NVD
NVD
added 2020/06/02 3:15 p.m.21 views

CVE-2020-3616

Buffer overflow in display function due to memory copy without checking length of size using strcpy function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8017,...

7.8CVSS7.9AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2020/06/02 3:15 p.m.24 views

CVE-2020-3630

Possibility of out of bound access while processing the responses from video firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053,...

7.8CVSS7.8AI score0.0019EPSS
Exploits0References1
Rows per page
Query Builder