CVSS: 7.8EPSS: 0%CPEs: 510EXPL: 0CVE-2020-11165
https://notcve.org/view.php?id=CVE-2020-11165
09 Jun 2021 — Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Una corrupción de la memoria debido al desbordamiento del búfer cuando se copia el mensaje proporcionado por HLOS en el búfer sin comprobar la longitud del búfer en los productos Snapdragon Aut... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 574EXPL: 0CVE-2020-11178
https://notcve.org/view.php?id=CVE-2020-11178
09 Jun 2021 — Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking APPS confiable para sobrescribir la memoria CPZ de otro caso de uso, ya que TZ solo comprueba que la dirección física no se superponga con su memoria y ... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 290EXPL: 0CVE-2020-11160
https://notcve.org/view.php?id=CVE-2020-11160
09 Jun 2021 — Resource leakage issue during dci client registration due to reference count is not decremented if dci client registration fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un problema de filtración de recursos durante el registro del cliente dci debido al reconteo de referencias no es reducido si el registro del cliente dci comete un fallo en los productos Snapdragon Auto, Snapdragon Compute, S... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.4EPSS: 0%CPEs: 1006EXPL: 0CVE-2020-11159
https://notcve.org/view.php?id=CVE-2020-11159
09 Jun 2021 — Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una sobrelectura del búfer puede ocurrir mientras se procesa WPA, RSN IE de la baliza y la... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 650EXPL: 0CVE-2020-11134
https://notcve.org/view.php?id=CVE-2020-11134
09 Jun 2021 — Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame are not Properly validated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible escritura fuera de límites de la pila en... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 9.4EPSS: 0%CPEs: 782EXPL: 0CVE-2020-11126
https://notcve.org/view.php?id=CVE-2020-11126
09 Jun 2021 — Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible lectura fuera de límites mientras se analiza la trama WLAN debido a una falta de comprobación de la longitud del cuerpo y del encabezado en los p... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 9.4EPSS: 0%CPEs: 954EXPL: 0CVE-2020-11191
https://notcve.org/view.php?id=CVE-2020-11191
07 Apr 2021 — Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Ocurre una lectura fuera de límites mientras se procesa un SDP diseñado debido a una falta de comprobación de la cadena null en l... • https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 262EXPL: 0CVE-2020-11228
https://notcve.org/view.php?id=CVE-2020-11228
17 Mar 2021 — Part of RPM region was not protected from xblSec itself due to improper policy and leads to unprivileged access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Parte de la región RPM no estaba protegida de xblSec en sí debido a una política inapropiada y conlleva a un acceso sin privilegios en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin •
CVSS: 9.8EPSS: 0%CPEs: 804EXPL: 0CVE-2020-11227
https://notcve.org/view.php?id=CVE-2020-11227
17 Mar 2021 — Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una escritura fuera de límite mientras se analiza el análisis de paquetes RTT/TTY debido a una falta de comprobación del tamaño del búfer antes de copiar en el búfer en los productos Snapdragon ... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 804EXPL: 0CVE-2020-11226
https://notcve.org/view.php?id=CVE-2020-11226
17 Mar 2021 — Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una lectura de memoria fuera de límite en el módem de datos mientras se descomprimen los datos debido a una falta de comprobación de longitud de desplazamiento en los productos Snapdragon Auto, Snapdragon Compute, Snap... • https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin • CWE-125: Out-of-bounds Read CWE-129: Improper Validation of Array Index •