Lucene search
K

165 matches found

Cvelist
Cvelist
added 2020/07/30 11:40 a.m.28 views

CVE-2020-3688

Possible buffer overflow while parsing mp4 clip with corrupted sample atoms due to improper validation of index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

9.7AI score0.00879EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.35 views

CVE-2019-14099

Device misbehavior may be observed when incorrect offset, length or number of buffers is passed by user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, MDM9206, MDM9207C...

8.3AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/30 11:40 a.m.41 views

CVE-2019-14093

Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

7.7AI score0.00199EPSS
Exploits0References1
NVD
NVD
added 2020/06/22 7:15 a.m.19 views

CVE-2020-3662

Buffer overflow can occur while parsing eac3 header while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ801...

9.8CVSS0.00938EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.27 views

CVE-2020-3662

Buffer overflow can occur while parsing eac3 header while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ801...

9.7AI score0.00938EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.29 views

CVE-2020-3660

Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009,...

9.5AI score0.00926EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.35 views

CVE-2020-3635

Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8920, MSM8937,...

7.9AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2020/06/22 7:10 a.m.60 views

CVE-2020-3614

CVE-2020-3614 is a buffer-overflow risk reported for Qualcomm Snapdragon firmware. The description in multiple sources specifies a lack of length check before copying a frame into a local buffer, affecting a broad set of Snapdragon products (Auto, Compute, Connectivity, IoT variants, Wearables, a...

9.8CVSS9.2AI score0.00707EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.29 views

CVE-2020-3626

Any application can bind to it and exercise the APIs due to no protection for AIDL uimlpaservice in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8905, MSM8909W, MSM8917, MSM8920,...

7.7AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/22 7:10 a.m.32 views

CVE-2020-3614

Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

9.4AI score0.00707EPSS
Exploits0References1
CVE
CVE
added 2020/06/22 7:10 a.m.57 views

CVE-2019-14094

CVE-2019-14094 describes an integer overflow in the diag command handler when a large value is supplied for the number of tasks in request packets. Affected products are Qualcomm Snapdragon families including Snapdragon Auto, Compute, Connectivity, etc., across numerous SoCs (e.g., APQ8009, APQ80...

7.8CVSS8.5AI score0.0019EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/22 7:10 a.m.60 views

CVE-2019-14080

CVE-2019-14080 is a high-severity, Qualcomm‑related vulnerability affecting Snapdragon modem data in multiple SoCs. Root cause: out-of-bounds write from lack of array index validation while parsing SDP attributes for SAR. Impact could be remote execution via network (per CVSS, network attack, cri...

9.8CVSS9.3AI score0.00711EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2020/06/02 3:15 p.m.30 views

CVE-2020-3641

Integer overflow may occur if atom size is less than atom offset as there is improper validation of atom size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096A...

10CVSS9.6AI score0.01057EPSS
Exploits0References1
NVD
NVD
added 2020/06/02 3:15 p.m.24 views

CVE-2020-3630

Possibility of out of bound access while processing the responses from video firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053,...

7.8CVSS7.8AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2020/06/02 3:15 p.m.31 views

CVE-2019-14038

Buffer over-read in ADSP parse function due to lack of check for availability of sufficient data payload received in command response in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.1CVSS7.7AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 2020/06/02 3:15 p.m.29 views

CVE-2019-14039

Out of bound read in adm call back function due to incorrect boundary check for payload in command response in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, APQ8098, MDM9206,...

7.1CVSS7.7AI score0.00186EPSS
Exploits0References1
Prion
Prion
added 2020/06/02 3:15 p.m.20 views

Code injection

Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile,...

2.1CVSS5.6AI score0.00187EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/02 3:5 p.m.31 views

CVE-2020-3616

Buffer overflow in display function due to memory copy without checking length of size using strcpy function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8017,...

7.9AI score0.00226EPSS
Exploits0References1
CVE
CVE
added 2020/06/02 3:5 p.m.67 views

CVE-2020-3616

CVE-2020-3616 describes a buffer overflow in Qualcomm Snapdragon display code caused by a memory copy using strcpy without length checking. Affected products include Snapdragon Auto, Compute, Consumer IOT, Industrial IOT, IoT, Mobile, Voice & Music, and Wearables across APQ8017/8053/8096AU/8098, ...

7.8CVSS7.8AI score0.00226EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/02 3:5 p.m.30 views

CVE-2020-3610

Possibility of double free of the drawobj that is added to the drawqueue array of the context during IOCTL commands as there is no refcount taken for this object in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IO...

7.9AI score0.0019EPSS
Exploits0References1
Rows per page
Query Builder