33 matches found
Double free
Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-35133
Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-35133
CVE-2021-35133 refers to a use-after-free in the synx driver within Qualcomm Snapdragon components (Connectivity, Industrial IOT, Mobile). The issue occurs during multiple invocations of synx release calls, i.e., a use-after-free in a driver path. Impact is described as high for confidentiality, ...
PT-2022-10446 · Qualcomm · Snapdragon Mobile +2
Name of the Vulnerable Software and Affected Versions: Snapdragon Connectivity affected versions not specified Snapdragon Industrial IOT affected versions not specified Snapdragon Mobile affected versions not specified Description: The issue is related to a use after free in the synx driver, whic...
CVE-2021-35121
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free condition In the Synx driver in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
Design/Logic Flaw
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free condition In the Synx driver in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-35121
An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free condition In the Synx driver in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-35121
CVE-2021-35121 affects Qualcomm/Snapdragon kernel components, specifically the Synx driver, where an array index is improperly used to lock/unlock a mutex. This leads to a Use-After-Free condition that can be triggered locally, with the CVSS v3.1 vector indicating Local access, Low attack complex...
PT-2021-7407 · Qualcomm · Synx Driver
Name of the Vulnerable Software and Affected Versions: Qualcomm synx driver affected versions not specified Description: The issue is related to a use-after-free condition in the synx driver, which can lead to memory corruption. This occurs when object handles are accessed without acquiring a loc...
CVE-2014-7391
The Synx addictive puzzle game aka us.synx.mobile.play application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Synx addictive puzzle game aka us.synx.mobile.play application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7391
The Synx addictive puzzle game aka us.synx.mobile.play application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7391
The CVE-2014-7391 entry concerns the Android version of the Synx addictive puzzle game (us.synx.mobile.play, version 1.0). The vulnerability stems from failing to verify X.509 certificates for TLS/SSL connections in the app, which can allow a man-in-the-middle to spoof servers and capture sensiti...