718 matches found
CVE-2021-1980
CVE-2021-1980 corresponds to a Qualcomm vulnerability: a possible buffer over-read due to a missing length check when parsing beacon IE responses in Snapdragon-related platforms (Auto, Compute, Connectivity, and other Snapdragon SKUs). The issue is triggered via network access and has high to cri...
CVE-2021-1932
CVE-2021-1932 is a vulnerability reported in Qualcomm closed-source components affecting Snapdragon platforms. The issue is described as improper access control in the trusted application environment, allowing unauthorized memory access to CDSP or ADSP VM memory with either privilege. Impact is r...
CVE-2021-1932
Improper access control in trusted application environment can cause unauthorized access to CDSP or ADSP VM memory with either privilege in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired...
CVE-2021-1913
Technical details about CVE-2021-1913 are not publicly provided in the supplied connected documents; only the description of an integer overflow in Qualcomm Snapdragon components is available. Monitor for updates.
CVE-2020-11303
Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voi...
CVE-2020-11303
The CVE-2020-11303 entry affects Qualcomm/Snapdragon wireless components (e.g., Snapdragon Auto, Connectivity, and IoT lines) and is caused by accepting AMSDU frames with a mismatched destination and source address, leading to information disclosure. The issue is categorized with high severity (C...
Cisco IOS and Cisco IOS XE Software Denial of Service Vulnerability (CNVD-2021-80668)
Cisco IOS and Cisco IOS XE Software are both products of the U.S. company Cisco IOS is a set of operating systems developed for its network devices.Cisco IOS XE Software is an operating system. Cisco IOS XE Software is a single operating system for enterprise wired and wireless access, aggregatio...
Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers IPv6 Denial of Service (cisco-sa-ewlc-ipv6-dos-NMYeCnZv)
According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a...
CVE-2021-1976
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and...
CVE-2021-1947
Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...
Design/Logic Flaw
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and...
Design/Logic Flaw
Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...
Integer overflow
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IO...
CVE-2021-30260
CVE-2021-30260 involves a Qualcomm-related vulnerability where improper validation of input parameters when handling the extscan hostlist configuration command can cause an integer overflow that may progress to a buffer overflow. Affected Qualcomm components/chips include csra6620, csra6640, csrb...
CVE-2021-30260
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IO...
CVE-2021-1976
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and...
CVE-2021-1971
Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...
CVE-2021-1941
Possible buffer over read issue due to improper length check on WPA IE string sent by peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...
CVE-2021-1974
Possible buffer over read due to lack of alignment between map or unmap length of IPA SMMU and WLAN SMMU in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure an...
CVE-2021-1974
CVE-2021-1974 is described in connected sources as a buffer issue (buffer over-read) due to misalignment between IPA SMMU and WLAN SMMU mapping lengths in Snapdragon platforms (Auto/Compute/Connectivity/IoT/Wearables/Networking). Qualcomm/Red Hat/NVD entries label it as high severity with network...