Lucene search
+L

72 matches found

CVE
CVE
added 2020/09/08 9:31 a.m.57 views

CVE-2019-14119

CVE-2019-14119 describes a TOCTOU race condition in Snapdragon platforms (Auto, Compute, Connectivity, IoT, Mobile, etc.) triggered while processing the SMCInvoke asynchronous message header. The race modifies the message count and leads to memory corruption, affecting a broad set of Qualcomm/Sna...

7CVSS6.9AI score0.00134EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/09/08 9:31 a.m.63 views

CVE-2019-14089

CVE-2019-14089 affects Qualcomm Snapdragon platforms (Kamorta, Nicobar, QCS404/610, Rennell, SA5x, SC7x, SDX55, SM6x/7x/8x, SXR2130) in multiple Snapdragon families. The vulnerability concerns Keymaster attestation key and device IDs provisioning, a one-time process that is incorrectly allowed to...

7.8CVSS7.6AI score0.0016EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.37 views

CVE-2019-14089

u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voi...

7.7AI score0.0016EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.68 views

CVE-2019-14065

CVE-2019-14065 is a vulnerability described as a pointer double free in HavenSvc caused by not resetting the freed pointer to NULL. It affects a wide range of Qualcomm-Snapdragon platforms (Snapdragon Auto, Compute, Consumer IoT, Industrial IoT, Mobile, Voice & Music, Wired Networking) across mul...

7.8CVSS7.7AI score0.00211EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.34 views

CVE-2019-14056

u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in...

7.9AI score0.00203EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.55 views

CVE-2019-14052

CVE-2019-14052 affects Qualcomm Snapdragon devices (Auto/Compute/Consumer IoT/Industrial IoT/ Mobile/ Wearables, etc.) across numerous SoCs (APQ8xxx, MDM*, MSM*, QCM/QCS, etc.). The issue arises from accessing an uninitialized data structure, which could cause partial copying of contents and lead...

10CVSS9.3AI score0.00907EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.38 views

CVE-2019-14052

u'Accessing an uninitialized data structure could result in partially copying of contents and thus incorrect processing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ801...

9.5AI score0.00907EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.52 views

CVE-2019-14025

CVE-2019-14025 affects Snapdragon platforms (e.g., Snapdragon Auto/Compute/Consumer IOT/etc.) where, on a new session creation, an Object is returned that contains TZ addresses and is passed to HLOS as a handle to refer to that session. The underlying issue is that this can cause TZ to jump to an...

5.5CVSS5.6AI score0.00174EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/09/08 9:31 a.m.67 views

CVE-2019-13999

CVE-2019-13999 involves a lack of check for integer overflow during round-up and addition, causing memory corruption and potential information leakage on multiple Qualcomm/Snapdragon platforms. The vulnerability affects a wide range of Snapdragon products (Auto, Compute, Connectivity, Consumer El...

7.8CVSS8AI score0.00203EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.51 views

CVE-2019-13999

u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial...

8.1AI score0.00203EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.30 views

CVE-2019-10596

u'Improper access control can lead signed process to guess pid of other processes and access their address space' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking ...

7.7AI score0.00203EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.38 views

CVE-2019-10562

u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon...

7.8AI score0.00158EPSS
Exploits0References1
Rows per page
Query Builder