CVSS: 10.0EPSS: 0%CPEs: 292EXPL: 0CVE-2022-25668
https://notcve.org/view.php?id=CVE-2022-25668
02 Sep 2022 — Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de memoria en el controlador de vídeo debido a una doble liberación mientras se analiza un clip ASF en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Sn... • https://www.qualcomm.com/company/product-security/bulletins/august-2022-bulletin • CWE-415: Double Free •
CVSS: 10.0EPSS: 0%CPEs: 308EXPL: 0CVE-2022-25659
https://notcve.org/view.php?id=CVE-2022-25659
02 Sep 2022 — Memory corruption due to buffer overflow while parsing MKV clips with invalid bitmap size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de memoria debido a un desbordamiento del búfer mientras son analizados clips MKV con un tamaño de mapa de bits no válido en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon I... • https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 290EXPL: 0CVE-2022-25658
https://notcve.org/view.php?id=CVE-2022-25658
02 Sep 2022 — Memory corruption due to incorrect pointer arithmetic when attempting to change the endianness in video parser function in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de la memoria debido a una aritmética de punteros incorrecta cuando es intentado cambiar el idioma en la función del analizador de vídeo en Snapdragon Auto, Snapdragon Compute, Snapdragon Connec... • https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 290EXPL: 0CVE-2022-22070
https://notcve.org/view.php?id=CVE-2022-22070
02 Sep 2022 — Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de la memoria en el audio debido a una falta de comprobación de la dirección de enrutamiento no válida en la tabla de enrutamiento APR en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu... • https://www.qualcomm.com/company/product-security/bulletins/august-2022-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 9.4EPSS: 0%CPEs: 398EXPL: 0CVE-2022-22062
https://notcve.org/view.php?id=CVE-2022-22062
02 Sep 2022 — An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Puede producirse una lectura fuera de límites mientras es analizado un certificado de servidor debido a una comprobación de... • https://www.qualcomm.com/company/product-security/bulletins/august-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 6.2EPSS: 0%CPEs: 336EXPL: 0CVE-2021-35135
https://notcve.org/view.php?id=CVE-2021-35135
02 Sep 2022 — A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse una desreferencia de puntero null durante la importación de claves RSA en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap... • https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 116EXPL: 0CVE-2022-22072
https://notcve.org/view.php?id=CVE-2022-22072
14 Jun 2022 — Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Puede producirse un desbordamiento del búfer debido a una comprobación inapropiada de la longitud de la información de la aplicación NDP en Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consu... • https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.8EPSS: 0%CPEs: 334EXPL: 0CVE-2022-22065
https://notcve.org/view.php?id=CVE-2022-22065
14 Jun 2022 — Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una lectura fuera de límites en WLAN HOST debido a una comprobación de longitud inapropiada puede conllevar a un DOS en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Elect... • https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 324EXPL: 0CVE-2022-22064
https://notcve.org/view.php?id=CVE-2022-22064
14 Jun 2022 — Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una posible lectura excesiva del búfer debido a una falta de comprobación del tamaño mientras es desempaquetada la trama en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume... • https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.7EPSS: 0%CPEs: 226EXPL: 0CVE-2021-35116
https://notcve.org/view.php?id=CVE-2021-35116
14 Jun 2022 — APK can load a crafted model into the CDSP which can lead to a compromise of CDSP and other APK`s data executing there in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables El APK puede cargar un modelo diseñado en el CDSP, lo que puede conllevar a un compromiso de los datos del CDSP y de otros APK que sean ejecutados en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT,... • https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin • CWE-20: Improper Input Validation •