CVSS: 7.5EPSS: 0%CPEs: 410EXPL: 0CVE-2021-1953
https://notcve.org/view.php?id=CVE-2021-1953
13 Jul 2021 — Improper handling of received malformed FTMR request frame can lead to reachable assertion while responding with FTM1 frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un manejo inapropiado de la trama de petición FTMR malformada recibida puede conllevar a una afirmación de alcance mientras se respon... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 414EXPL: 0CVE-2021-1938
https://notcve.org/view.php?id=CVE-2021-1938
13 Jul 2021 — Possible assertion due to improper verification while creating and deleting the peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible aserción debido a una verificación inapropiada mientras se crea y elimina el peer en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 4.3EPSS: 0%CPEs: 44EXPL: 0CVE-2021-1896
https://notcve.org/view.php?id=CVE-2021-1896
13 Jul 2021 — Weak configuration in WLAN could cause forwarding of unencrypted packets from one client to another in Snapdragon Compute, Snapdragon Connectivity Una configuración débil en la WLAN podría causar el reenvío de paquetes no cifrados de un cliente a otro en Snapdragon Compute, Snapdragon Connectivity • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1890
https://notcve.org/view.php?id=CVE-2021-1890
13 Jul 2021 — Improper length check of public exponent in RSA import key function could cause memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Una comprobación inapropiada de la longitud del exponente público en la función import key RSA podría causar corrupción en la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1889
https://notcve.org/view.php?id=CVE-2021-1889
13 Jul 2021 — Possible buffer overflow due to lack of length check in Trusted Application in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de la longitud en Trusted Application en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voi... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 310EXPL: 0CVE-2021-1888
https://notcve.org/view.php?id=CVE-2021-1888
13 Jul 2021 — Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de memoria en la función key parsing e import debido a una doble liberación de la misma asignación de la pila en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indust... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-415: Double Free •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1886
https://notcve.org/view.php?id=CVE-2021-1886
13 Jul 2021 — Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un manejo incorrecto de los punteros en el mecanismo de importación de claves de aplicaciones confiables podría causar daños en la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 372EXPL: 0CVE-2021-1937
https://notcve.org/view.php?id=CVE-2021-1937
09 Jun 2021 — Reachable assertion is possible while processing peer association WLAN message from host and nonstandard incoming packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking La afirmación alcanzable es posible mientras se procesa el mensaje WLAN de asociación de pares desde el host y el paquete entrante no es... • https://www.qualcomm.com/company/product-security/bulletins/june-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 222EXPL: 0CVE-2020-11298
https://notcve.org/view.php?id=CVE-2020-11298
09 Jun 2021 — While waiting for a response to a callback or listener request, non-secure clients can change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Mientras esperan una respuesta a una devolución de llamada o una petición de escucha, los clientes no seguros pueden cambiar los p... • https://www.qualcomm.com/company/product-security/bulletins/june-2021-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 318EXPL: 0CVE-2020-11304
https://notcve.org/view.php?id=CVE-2020-11304
09 Jun 2021 — Possible out of bound read in DRM due to improper buffer length check. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible lectura fuera de límites en DRM debido a una comprobación inapropiada de la longitud del búfer en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indus... • https://www.qualcomm.com/company/product-security/bulletins/june-2021-bulletin • CWE-125: Out-of-bounds Read •