Msm8996au Firmware Security Vulnerabilities and Issues — Msm8996au Firmware CVE List

Lucene search

QualcommMsm8996au Firmware

13 matches found

CVE•added 2018/07/06 5:29 p.m.•51 views

CVE-2018-5876

While parsing an mp4 file, a buffer overflow can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear.

8.8CVSS8.1AI score0.00457EPSS

CVE•added 2018/07/12 2:29 p.m.•48 views

CVE-2017-18155

While playing HEVC content using HD DMB in Snapdragon Automobile and Snapdragon Mobile in version MSM8996AU, SD 450, SD 625, SD 820, SD 820A, SD 835, an uninitialized variable can be used leading to a kernel fault.

7.8CVSS7.5AI score0.00101EPSS

CVE•added 2018/07/06 5:29 p.m.•46 views

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and configu...

7.7CVSS7.2AI score0.00041EPSS

CVE•added 2018/07/06 5:29 p.m.•45 views

CVE-2017-11088

Improper Input Validation in Linux io-prefetch in Snapdragon Mobile and Snapdragon Wear, A SQL injection vulnerability exists in versions MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 835, SD 845.

9.8CVSS9.7AI score0.00259EPSS

CVE•added 2018/07/06 5:29 p.m.•45 views

CVE-2018-5838

Improper Validation of Array Index In the adreno OpenGL driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, an out-of-bounds access can occur in SurfaceFlinger.

7.8CVSS7.2AI score0.00026EPSS

CVE•added 2018/07/06 5:29 p.m.•45 views

CVE-2018-5874

While parsing an mp4 file, a stack-based buffer overflow can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear.

8.8CVSS8.1AI score0.00457EPSS

CVE•added 2018/07/06 5:29 p.m.•45 views

CVE-2018-5885

While loading dynamic fonts, a buffer overflow may occur if the number of segments in the font file is out of range in Snapdragon Mobile and Snapdragon Wear.

9.8CVSS8.6AI score0.00313EPSS

CVE•added 2018/07/06 5:29 p.m.•41 views

CVE-2018-11258

In ADSP RPC in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, a Use After Free condition can occur in versions MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDX20.

7.8CVSS6.8AI score0.00051EPSS

CVE•added 2018/07/06 5:29 p.m.•40 views

CVE-2018-5875

While parsing an mp4 file, an integer overflow leading to a buffer overflow can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear.

8.8CVSS8.1AI score0.00457EPSS

CVE•added 2018/07/06 5:29 p.m.•39 views

CVE-2018-5891

While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in Sn...

8.4CVSS7.9AI score0.00095EPSS

CVE•added 2018/07/06 5:29 p.m.•39 views

CVE-2018-5892

The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear.

7.5CVSS7.5AI score0.00297EPSS

CVE•added 2018/07/06 5:29 p.m.•38 views

CVE-2018-5894

Improper Validation of Array Index in Multimedia While parsing an mp4 file in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, an out-of-bounds access can occur.

6.5CVSS6.8AI score0.00297EPSS

CVE•added 2018/07/06 5:29 p.m.•34 views

CVE-2018-5882

While parsing a Flac file with a corrupted comment block, a buffer over-read can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear.

9.8CVSS7.7AI score0.0037EPSS