718 matches found
CVE-2021-30335
Possible assertion in QOS request due to improper validation when multiple add or update request are received simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
CVE-2021-30298
Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching between USB and PCIE interface in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wire...
CVE-2021-30282
CVE-2021-30282 affects Qualcomm Snapdragon hardware/software components, with a flaw described as an input validation error that fails to validate the number of RAM partitions. This can lead to an out-of-bounds write in the RAM partition table. The vulnerability is associated with multiple Snapdr...
CVE-2021-30279
CVE-2021-30279 is tied to an access control issue caused by improper privilege masking for VMIDs in Qualcomm components. CNNVD notes the vulnerability exists in Qualcomm SDX55 and QCA6390 products, indicating a local privilege elevation possibility via VMID privilege settings. NVD/Red Hat entries...
CVE-2021-30278
Improper input validation in TrustZone memory transfer interface can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...
CVE-2021-30276
Improper access control while doing XPU re-configuration dynamically can lead to unauthorized access to a secure resource in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wired Infrastructure and Networking...
CVE-2021-30275
The CVE-2021-30275 issue is an input validation and integer overflow vulnerability in Qualcomm’s closed‑source components across Snapdragon platforms (e.g., Snapdragon Auto/Compute/Connectivity and related SoCs). The root cause is a lack of address/size validation before the page alignment operat...
CVE-2021-30275
Possible integer overflow in page alignment interface due to lack of address and size validation before alignment in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and...
CVE-2021-30274
CVE-2021-30274 concerns an integer overflow in the access initialization interface due to inadequate size and address validation. The issue is described across multiple sources as affecting Qualcomm/ Qualcomm Snapdragon platforms (including Snapdragon Auto, Compute, Connectivity, and related IoT/...
CVE-2021-30271
Possible null pointer dereference in trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music...
CVE-2021-30270
Possible null pointer dereference in thread profile trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables,...
CVE-2021-30269
CVE-2021-30269 describes a potential null pointer dereference caused by insufficient TLB validation for user-provided addresses on Qualcomm Snapdragon platforms (across Snapdragon Auto, Compute, Connectivity, and related Snapdragon variants). Multiple connected sources (Red Hat, PRION, and CNNVD ...
CVE-2021-30269
Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired...
CVE-2020-11263
CVE-2020-11263 describes an integer overflow caused by an improper check after address and size alignment in Qualcomm Snapdragon components (notably Snapdragon Compute/Connectivity/IoT families). The vulnerability arises in the handling of aligned address-size values and is tied to the Snapdragon...
CVE-2021-30264
Possible use after free due improper validation of reference from call back to internal store table in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure a...
CVE-2021-30266
Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...
Input validation
Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...
Design/Logic Flaw
Possible out of bound access due to improper validation of function table entries in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure...
Information disclosure
Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice &...
Input validation
Possible use after free due improper validation of reference from call back to internal store table in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure a...