3851 matches found
CVE-2021-35081
Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...
CVE-2021-30341
CVE-2021-30341 describes memory corruption caused by improper buffer size validation of DSM packets in Qualcomm/Snapdragon components (Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Wearables). The CVSS v3.1 base score is 9.8 (CRITICAL) with NETWORK ...
CVE-2021-30341
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...
CVE-2022-22072
CVE-2022-22072 is a buffer overflow caused by improper validation of NDP application information length in Qualcomm Snapdragon family components (including Auto, Compute, CE Connectivity, CIOT, Industrial IOT, Mobile, Voice & Music) and related WLAN subsystems. The vulnerability is locally exploi...
CVE-2022-22065
Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
CVE-2022-22065
CVE-2022-22065 is a Qualcomm Snapdragon WLAN-Host vulnerability characterized by an out-of-bounds read due to an improper length check, leading to Denial of Service. The CVE is listed under Qualcomm components for the May 2022 Android security updates as a High-severity WLAN issue. Connected sour...
CVE-2022-22064
Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
CVE-2021-35084
Possible out of bound read due to lack of length check of data length for a DIAG event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2021-35083
CVE-2021-35083 is a Qualcomm/Snapdragon vulnerability describing a possible out-of-bounds read caused by improper validation of certificate chains in SSL or IKE. Affects Qualcomm Snapdragon families across Auto, Compute, Connectivity, and other lines. CVSS metrics indicate a network-based, low-co...
PT-2022-15220 · Qualcomm · Qualcomm Snapdragon
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: A buffer overflow issue arises from the improper validation of NDP application information length. This affects various Qualcomm Snapdragon products, including Snapdragon Auto,...
PT-2022-10404 · Qualcomm · Snapdragon Connectivity +8
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions affected versions not specified Description: The issue is related to a possible out of bound read due to improper validation of the certificate chain in SSL or Internet key exchange. This affects various Qualcomm...
PT-2022-10004 · Qualcomm · Snapdragon Connectivity +6
Name of the Vulnerable Software and Affected Versions: Snapdragon Auto affected versions not specified Snapdragon Compute affected versions not specified Snapdragon Connectivity affected versions not specified Snapdragon Consumer Electronics Connectivity affected versions not specified Snapdragon...
TOTOLINK EX1200T setNoticeCfg function command injection vulnerability
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.A command injection vulnerability exists in TOTOLINK EX1200T V4.1.2cu.5215, which originates from the file lib/cstemodules/system in the setNoticeCfg function in the file lib/cstemodules/system fails to properly...
TOTOLINK EX1200T Information Disclosure Vulnerability (CNVD-2022-53565)
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.TOTOLINK EX1200T is vulnerable to information disclosure, which can be exploited by attackers to obtain sensitive information wifikey, wifiname, etc. without authorization...
TOTOLINK EX1200T has unspecified vulnerabilities
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.A security vulnerability exists in TOTOLINK EX1200T V4.1.2cu.5215, which can be exploited by attackers to send specific requests to bypass login via formLoginAuth.htm...
TOTOLINK EX1200T Information Disclosure Vulnerability (CNVD-2022-53567)
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.TOTOLINK EX1200T is vulnerable to information disclosure, which can be exploited by attackers to obtain sensitive information wifikey, etc. without authorization via getSysStatusCfg...
TOTOLINK EX1200T Information Disclosure Vulnerability (CNVD-2022-53566)
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.TOTOLINK EX1200T is vulnerable to information disclosure, which can be exploited by attackers to obtain sensitive information wifikey, etc. without authorization...
TOTOLINK EX1200T Information Disclosure Vulnerability
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.TOTOLINK EX1200T suffers from an information disclosure vulnerability, which can be exploited by attackers to obtain the apmib configuration file without authorization, and the username and password can be found...
TOTOLINK EX1200T Denial of Service Vulnerability
TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.A denial of service vulnerability exists in TOTOLINK EX1200T, which can be exploited by attackers to cause a denial of service or reboot the system...
TOTOLINK EX1200T Command Injection Vulnerability
TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK.A command injection vulnerability exists in TOTOLINK EX1200T, which stems from a remote command injection issue in the setDeviceName function of the global.so file, which could be exploited to control the device nam...