Lucene search
+L

237 matches found

Cvelist
Cvelist
added 2020/11/02 6:21 a.m.30 views

CVE-2020-11156

u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

8.2AI score0.00418EPSS
Exploits0References1
CVE
CVE
added 2020/11/02 6:21 a.m.74 views

CVE-2020-11153

CVE-2020-11153 affects Qualcomm Snapdragon platforms (Auto, Compute, Connectivity, CEC, IOT, Mobile) including APQ8053, QCA6390/9379, QCN7605, SC8180X, SDX55. Root cause: out-of-bounds memory access while processing GATT data due to insufficient validation of PDU length. This can lead to remote c...

10CVSS9.5AI score0.02183EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/11/02 6:21 a.m.28 views

CVE-2020-11154

u'Buffer overflow while processing a crafted PDU data packet in bluetooth due to lack of check of buffer size before copying' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag...

8.8AI score0.0051EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/02 6:21 a.m.30 views

CVE-2020-11141

u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap configuration request received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

8.2AI score0.00304EPSS
Exploits0References1
CVE
CVE
added 2020/11/02 6:21 a.m.67 views

CVE-2020-11141

CVE-2020-11141 describes a buffer over-read in Bluetooth estack caused by a missing length check on the L2CAP configuration request from a peer. Affected are Qualcomm Snapdragon platforms (e.g., APQ8009, APQ8053, QCA6390, QCN7605, SM8250, and others across Snapdragon Auto/Compute/Connectivity/UIs...

8.1CVSS8.1AI score0.00304EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2020/09/09 7:15 a.m.38 views

CVE-2020-3634

u'Multiple Read overflows issue due to improper length check while decoding Generic NAS transport/EMM info' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205...

9.4CVSS0.01057EPSS
Exploits0References1
NVD
NVD
added 2020/09/09 7:15 a.m.19 views

CVE-2020-3656

Out of bound access can happen in MHI command process due to lack of check of command channel id value received from MHI devices in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009...

7.8CVSS0.00227EPSS
Exploits0References1
NVD
NVD
added 2020/09/09 7:15 a.m.30 views

CVE-2020-11124

u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404,...

7.8CVSS0.00227EPSS
Exploits0References1
CVE
CVE
added 2020/09/09 6:25 a.m.48 views

CVE-2020-3674

CVE-2020-3674 is a vulnerability affecting Qualcomm Snapdragon platforms where information can leak to userspace due to improper transfer of data from kernel to userspace. The NVD description aggregates impact as partial information disclosure without kernel integrity or availability impact, with...

5.5CVSS6.2AI score0.00207EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/09/09 6:25 a.m.66 views

CVE-2020-3679

CVE-2020-3679 affects Qualcomm Snapdragon components (including Snapdragon Auto/Compute/Mobile etc.) where, after ASLR is enabled in QTEE, some code remains mapped at a fixed known address. This exposes local attack surfaces and can lead to confidentiality impact (per CVSS), with code execution p...

5.5CVSS6.7AI score0.00263EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/09 6:25 a.m.33 views

CVE-2020-11124

u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404,...

7.7AI score0.00227EPSS
Exploits0References1
NVD
NVD
added 2020/09/08 10:15 a.m.23 views

CVE-2020-3636

u'Out of bound writes happen when accessing usagetable header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55,...

7.8CVSS7.8AI score0.0019EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.30 views

CVE-2020-3644

u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...

5.5CVSS5.6AI score0.00212EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.21 views

CVE-2020-3620

u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,...

5.5CVSS5.8AI score0.00187EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.18 views

CVE-2020-3640

u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and...

7.8CVSS7.7AI score0.00204EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.18 views

CVE-2020-3621

u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics...

5.5CVSS5.7AI score0.0022EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.25 views

CVE-2019-14119

u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

7CVSS6.9AI score0.00134EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.26 views

CVE-2019-14117

u'Whenever the page list is updated via privileged user, the previous list elements are freed but are not deleted from the list which results in a use after free causing an unhandled page fault exception in rmnet driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdrago...

7.8CVSS7.8AI score0.00203EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.31 views

CVE-2019-10562

u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon...

7.8CVSS7.8AI score0.00158EPSS
Exploits0References2
NVD
NVD
added 2020/09/08 10:15 a.m.28 views

CVE-2019-14065

u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098,...

7.8CVSS7.8AI score0.00211EPSS
Exploits0References2
Rows per page
Query Builder