Lucene search
+L

124 matches found

Cvelist
Cvelist
added 2020/09/08 9:31 a.m.37 views

CVE-2020-3620

u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,...

5.8AI score0.00187EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.28 views

CVE-2020-3621

u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics...

5.7AI score0.0022EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.32 views

CVE-2020-11118

u'Information exposure issues while processing IE header due to improper check of beacon IE frame' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.7AI score0.00663EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.55 views

CVE-2019-14052

CVE-2019-14052 affects Qualcomm Snapdragon devices (Auto/Compute/Consumer IoT/Industrial IoT/ Mobile/ Wearables, etc.) across numerous SoCs (APQ8xxx, MDM*, MSM*, QCM/QCS, etc.). The issue arises from accessing an uninitialized data structure, which could cause partial copying of contents and lead...

10CVSS9.3AI score0.00907EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.39 views

CVE-2019-14052

u'Accessing an uninitialized data structure could result in partially copying of contents and thus incorrect processing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ801...

9.5AI score0.00907EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.67 views

CVE-2019-13999

CVE-2019-13999 involves a lack of check for integer overflow during round-up and addition, causing memory corruption and potential information leakage on multiple Qualcomm/Snapdragon platforms. The vulnerability affects a wide range of Snapdragon products (Auto, Compute, Connectivity, Consumer El...

7.8CVSS8AI score0.00203EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.52 views

CVE-2019-13999

u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial...

8.1AI score0.00203EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.48 views

CVE-2018-13903

CVE-2018-13903 describes a race condition in EPCO handling that causes an error in UE. Affected are Snapdragon platforms across multiple families (e.g., Snapdragon Auto, Compute, Consumer IOT, Industrial IOT, Mobile, Wearables) spanning APQ8053, MDM9205/9206, MSM89x, SDM450, SM8150, among others....

9.3CVSS8AI score0.00562EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/07/30 12:15 p.m.26 views

Command injection

Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

3.6CVSS7.3AI score0.00186EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.29 views

CVE-2020-3688

Possible buffer overflow while parsing mp4 clip with corrupted sample atoms due to improper validation of index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

9.7AI score0.00879EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.43 views

CVE-2019-14093

Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

7.7AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.37 views

CVE-2020-3635

Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8920, MSM8937,...

7.9AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.30 views

CVE-2020-3626

Any application can bind to it and exercise the APIs due to no protection for AIDL uimlpaservice in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8905, MSM8909W, MSM8917, MSM8920,...

7.7AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.34 views

CVE-2020-3614

Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

9.4AI score0.00707EPSS
Exploits0References1
CVE
CVE
added 2020/06/22 7:10 a.m.63 views

CVE-2020-3614

CVE-2020-3614 is a buffer-overflow risk reported for Qualcomm Snapdragon firmware. The description in multiple sources specifies a lack of length check before copying a frame into a local buffer, affecting a broad set of Snapdragon products (Auto, Compute, Connectivity, IoT variants, Wearables, a...

9.8CVSS9.2AI score0.00707EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/22 7:10 a.m.58 views

CVE-2019-14094

CVE-2019-14094 describes an integer overflow in the diag command handler when a large value is supplied for the number of tasks in request packets. Affected products are Qualcomm Snapdragon families including Snapdragon Auto, Compute, Connectivity, etc., across numerous SoCs (e.g., APQ8009, APQ80...

7.8CVSS8.5AI score0.0019EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/22 7:10 a.m.61 views

CVE-2019-14080

CVE-2019-14080 is a high-severity, Qualcomm‑related vulnerability affecting Snapdragon modem data in multiple SoCs. Root cause: out-of-bounds write from lack of array index validation while parsing SDP attributes for SAR. Impact could be remote execution via network (per CVSS, network attack, cri...

9.8CVSS9.3AI score0.00711EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/06/02 3:15 p.m.22 views

Code injection

Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile,...

2.1CVSS5.6AI score0.00187EPSS
Exploits0References1
CVE
CVE
added 2020/06/02 3:5 p.m.62 views

CVE-2019-14067

CVE-2019-14067 describes a timing side-channel information disclosure caused by using non-time-constant comparison functions (e.g., memcmp) in Qualcomm-based Snapdragon firmware. Affected products span Snapdragon Auto, Compute, Connectivity, IoT, Wearables, and related SoCs (including APQ8009/801...

5.5CVSS5.5AI score0.00187EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/04/16 11:15 a.m.36 views

CVE-2020-3651

Active command timeout since WM status change cmd is not removed from active queue if peer sends multiple deauth frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...

7.8CVSS7.8AI score0.00658EPSS
Exploits0References1
Rows per page
Query Builder