CVSS: 10.0EPSS: 0%CPEs: 554EXPL: 0CVE-2021-1972
https://notcve.org/view.php?id=CVE-2021-1972
08 Sep 2021 — Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible desbordamiento del búfer debido a una comprobación inapropiada de los tipos de dispositivos durante la búsqueda P2P en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 344EXPL: 0CVE-2021-1920
https://notcve.org/view.php?id=CVE-2021-1920
08 Sep 2021 — Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un desbordamiento de enteros debido a un manejo inapropiado de los paquetes RTCP entrantes en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Vo... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 312EXPL: 0CVE-2021-1919
https://notcve.org/view.php?id=CVE-2021-1919
08 Sep 2021 — Integer underflow can occur when the RTCP length is lesser than than the actual blocks present in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un desbordamiento de enteros cuando la longitud de RTCP es menor que los bloques reales presentes en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 366EXPL: 0CVE-2021-1916
https://notcve.org/view.php?id=CVE-2021-1916
08 Sep 2021 — Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de valores de índices negativos cuando es procesada la entrada proporcionada por el usuario en Snapdragon Auto, Snapdragon Compute, Snapdragon Connect... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 312EXPL: 0CVE-2021-1914
https://notcve.org/view.php?id=CVE-2021-1914
08 Sep 2021 — Loop with unreachable exit condition may occur due to improper handling of unsupported input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un bucle con condición de salida no alcanzable debido al manejo inapropiado de entradas no admitidas en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 6.2EPSS: 0%CPEs: 350EXPL: 0CVE-2021-1904
https://notcve.org/view.php?id=CVE-2021-1904
08 Sep 2021 — Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables El proceso hijo puede filtrar información del proceso padre debido a que los pids numéricos son comparados y estos pid pueden reusarse en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-697: Incorrect Comparison •
CVSS: 9.1EPSS: 0%CPEs: 538EXPL: 0CVE-2020-11301
https://notcve.org/view.php?id=CVE-2020-11301
08 Sep 2021 — Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una autenticación inapropiada de tramas Wi-Fi de texto plano sin cifrar en una red cifrada puede ... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 0%CPEs: 252EXPL: 0CVE-2020-11264
https://notcve.org/view.php?id=CVE-2020-11264
08 Sep 2021 — Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Una autenticación inapropiada de las tramas de texto plano que no son EAPOL/WAPI durante el apretón de manos de cuatro vías puede conllevar a una inyección arbitraria de paq... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 356EXPL: 0CVE-2021-1955
https://notcve.org/view.php?id=CVE-2021-1955
13 Jul 2021 — Denial of service in SAP case due to improper handling of connections when association is rejected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una Denegación de servicio en el caso de SAP debido a un manejo inapropiado de las conexiones cuando la asociación es rechazada en Snapdragon Auto, Snapdragon Compute, ... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 412EXPL: 0CVE-2021-1945
https://notcve.org/view.php?id=CVE-2021-1945
13 Jul 2021 — Possible out of bound read due to lack of length check of Bandwidth-NSS IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible lectura fuera de límites debido a una falta de comprobación de la longitud de Bandwidth-NSS IE en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-125: Out-of-bounds Read •