CVSS: 7.8EPSS: 0%CPEs: 830EXPL: 0CVE-2021-1895
https://notcve.org/view.php?id=CVE-2021-1895
07 May 2021 — Possible integer overflow due to improper length check while flashing an image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Un posible desbordamiento de enteros debido a una comprobación de longitud inapropiada mientras se muestra una imagen en los productos Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.4EPSS: 0%CPEs: 830EXPL: 0CVE-2021-1891
https://notcve.org/view.php?id=CVE-2021-1891
07 May 2021 — A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible ocurrencia de uso de la memoria previamente liberada en el controlador de audio puede ocurrir cuando los punteros no son manejados apropiadamente en los productos Sna... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 994EXPL: 0CVE-2020-11289
https://notcve.org/view.php?id=CVE-2020-11289
07 May 2021 — Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una escritura fuera de límite puede ocurrir en el controlador de comandos TZ debido a una falta de comprobación de la ID del comando en los productos Snapdragon Auto, Snapdra... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 624EXPL: 0CVE-2020-11252
https://notcve.org/view.php?id=CVE-2020-11252
07 Apr 2021 — Trustzone initialization code will disable xPU`s when memory dumps are enabled and lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un código de inicialización Trustzone desactivará las xPU`s cuando se habiliten los volcados de la memoria y conllevará a una divulgación de información en los productos Snapdragon Auto, Sn... • https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 9.4EPSS: 0%CPEs: 954EXPL: 0CVE-2020-11191
https://notcve.org/view.php?id=CVE-2020-11191
07 Apr 2021 — Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Ocurre una lectura fuera de límites mientras se procesa un SDP diseñado debido a una falta de comprobación de la cadena null en l... • https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 6.0EPSS: 0%CPEs: 634EXPL: 0CVE-2020-3664
https://notcve.org/view.php?id=CVE-2020-3664
22 Feb 2021 — Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un acceso de lectura fuera del límite en el hypervisor debido a un intento de acceso de lectura no válido al pasar direcciones no válidas en los productos Snapdragon Auto, Snapdragon Compute, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 329EXPL: 0CVE-2020-11287
https://notcve.org/view.php?id=CVE-2020-11287
22 Feb 2021 — Allowing RTT frames to be linked with non randomized MAC address by comparing the sequence numbers can lead to information disclosure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Permitir que las tramas RTT sean vinculadas con direcciones MAC no aleatorias mediante la comparación de números de secuen... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-203: Observable Discrepancy •
CVSS: 7.5EPSS: 0%CPEs: 1064EXPL: 0CVE-2020-11296
https://notcve.org/view.php?id=CVE-2020-11296
22 Feb 2021 — Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un desbordamiento aritmético puede ocurrir mientras se procesa NOA IE debido a un manejo inapropiado de errores en los productos Snapdragon Auto, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 698EXPL: 0CVE-2020-11281
https://notcve.org/view.php?id=CVE-2020-11281
22 Feb 2021 — Allowing RTT frames to be linked with non randomized MAC address by comparing the sequence numbers can lead to information disclosure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Permitir que las tramas RTT sean vinculadas con direcciones MAC no aleatorias mediante la comparación de números de secuen... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 826EXPL: 0CVE-2020-11280
https://notcve.org/view.php?id=CVE-2020-11280
22 Feb 2021 — Denial of service while processing fine timing measurement request (FTMR) frame with reserved bits set in the FTM parameter IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una denegación de servicio mientras se procesa la trama de petición de medición de sincronización f... • https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin • CWE-617: Reachable Assertion •