Lucene search
K

45 matches found

prion
prion
added 2021/10/20 7:15 a.m.23 views

Stack overflow

Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...

7.2CVSS7.5AI score0.00157EPSS
Exploits0References1
prion
prion
added 2021/10/20 7:15 a.m.24 views

Out-of-bounds

Possible out of bound read or write in VR service due to lack of validation of DSP selection values in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...

7.2CVSS7.3AI score0.00154EPSS
Exploits0References1
prion
prion
added 2021/10/20 7:15 a.m.25 views

Buffer overflow

Possible buffer overflow due to improper size calculation of payload received in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

7.2CVSS7.5AI score0.00157EPSS
Exploits0References1
prion
prion
added 2021/10/20 7:15 a.m.24 views

Buffer overflow

Possible buffer overflow due to improper handling of negative data length while processing write request in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

7.2CVSS7.6AI score0.00157EPSS
Exploits0References1
cve
cve
added 2021/10/20 6:31 a.m.54 views

CVE-2021-30297

CVE-2021-30297 is a Qualcomm/ Snapdragon VR service vulnerability: an out-of-bounds read caused by improper validation of the data transfer packet length in the VR service. Affected are Snapdragon platforms including Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, and Wearables. CVSS d...

8.4CVSS7AI score0.00146EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/10/20 6:31 a.m.29 views

CVE-2021-30297

Possible out of bound read due to improper validation of packet length while handling data transfer in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

8.4CVSS8.5AI score0.00146EPSS
Exploits0References1
cvelist
cvelist
added 2021/10/20 6:31 a.m.30 views

CVE-2021-30258

Possible buffer overflow due to improper size calculation of payload received in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

8.4CVSS8.8AI score0.00157EPSS
Exploits0References1
cve
cve
added 2021/10/20 6:31 a.m.55 views

CVE-2021-30258

CVE-2021-30258 involves a buffer overflow caused by improper payload size calculation in the VR service of Qualcomm Snapdragon platforms. The initial CVE description lists Snapdragon Auto/Compute/Connectivity/Consumer IoT/Industrial IoT/Wearables as affected. The connected CNNVD entry expands thi...

8.4CVSS7.6AI score0.00157EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/10/20 6:31 a.m.33 views

CVE-2021-30257

Possible out of bound read or write in VR service due to lack of validation of DSP selection values in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...

8.4CVSS8.6AI score0.00154EPSS
Exploits0References1
cve
cve
added 2021/10/20 6:31 a.m.59 views

CVE-2021-30257

CVE-2021-30257 describes a potential out-of-bounds read or write in the VR service caused by insufficient validation of DSP selection values in Qualcomm’s Snapdragon platforms (Compute, Connectivity, and IoT variants). The issue is rooted in DSP value handling within VR services and is documented...

8.4CVSS7.3AI score0.00154EPSS
Exploits0References1Affected Software1
cve
cve
added 2021/10/20 6:31 a.m.59 views

CVE-2021-30256

CVE-2021-30256 describes a stack overflow caused by improper validation of the camera name length before copying the name in VR Service on Qualcomm/Snapdragon platforms (Snapdragon Compute, Connectivity, Consumer IoT, Industrial IoT). Connected sources corroborate exposure within Qualcomm compone...

8.4CVSS7.5AI score0.00157EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/10/20 6:31 a.m.28 views

CVE-2021-30256

Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...

8.4CVSS8.7AI score0.00157EPSS
Exploits0References1
cve
cve
added 2021/10/20 6:31 a.m.55 views

CVE-2021-1983

CVE-2021-1983 concerns a buffer overflow in Qualcomm Snapdragon VR service when processing a write request, attributed to improper handling of negative data length. Public records identify Snapdragon lines affected (Snapdragon Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Wearables)....

8.4CVSS7.6AI score0.00157EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/10/20 6:31 a.m.33 views

CVE-2021-1983

Possible buffer overflow due to improper handling of negative data length while processing write request in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

8.4CVSS8.9AI score0.00157EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/10/04 12:0 a.m.6 views

多款Qualcomm产品缓冲区错误漏洞

Qualcomm MSM8996AU and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MSM8996AU is a central processing unit CPU product.The QCA6574AU is a central processing unit CPU product.The SD 636 is a central processing unit CPU product.The QCA6574AU is a central processing unit CPU...

8.4CVSS7.3AI score0.00146EPSS
Exploits0References5
cnnvd
cnnvd
added 2021/10/04 12:0 a.m.5 views

多款Qualcomm产品缓冲区错误漏洞

Qualcomm MSM8996AU and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MSM8996AU is a central processing unit CPU product.The QCA6574AU is a central processing unit CPU product.The SD 636 is a central processing unit CPU product. A security vulnerability exists in Qualcomm that...

8.4CVSS7.9AI score0.00157EPSS
Exploits0References5
cve
cve
added 2020/03/24 7:2 p.m.44 views

CVE-2019-20591

CVE-2019-20591 affects Samsung mobile devices running N (7.x), O (8.x), and P (9.0) with a local SQL injection in the Gear VR Service Content Provider. The issue, tracked as Samsung Samsung ID SVE-2019-14058, is documented across multiple feeds (NVD, Red Hat, etc.). The connected sources confirm ...

7.8CVSS8AI score0.00168EPSS
Exploits0References1Affected Software1
prion
prion
added 2018/04/11 3:29 p.m.19 views

Buffer overflow

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 835, SD 845, while processing a SetParam command packet in the VR service, the extracted namelen and valuelen values ar...

10CVSS9.7AI score0.01354EPSS
Exploits0References2
nvd
nvd
added 2018/04/11 3:29 p.m.23 views

CVE-2017-18127

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 835, SD 845, while processing a SetParam command packet in the VR service, the extracted namelen and valuelen values ar...

10CVSS8.8AI score0.01354EPSS
Exploits0References2
cve
cve
added 2018/04/11 3:0 p.m.51 views

CVE-2017-18127

CVE-2017-18127 affects Android on Qualcomm Snapdragon devices (before 2018-04-05 patch level) where, while processing a SetParam command packet in the VR service, the code does not validate the extracted name_len and value_len values, potentially leading to a buffer overflow in subsequent calls t...

10CVSS8.7AI score0.01354EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder