CVSS: 10.0EPSS: 0%CPEs: 344EXPL: 0CVE-2021-1920
https://notcve.org/view.php?id=CVE-2021-1920
08 Sep 2021 — Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un desbordamiento de enteros debido a un manejo inapropiado de los paquetes RTCP entrantes en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Vo... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 312EXPL: 0CVE-2021-1919
https://notcve.org/view.php?id=CVE-2021-1919
08 Sep 2021 — Integer underflow can occur when the RTCP length is lesser than than the actual blocks present in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un desbordamiento de enteros cuando la longitud de RTCP es menor que los bloques reales presentes en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 366EXPL: 0CVE-2021-1916
https://notcve.org/view.php?id=CVE-2021-1916
08 Sep 2021 — Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de valores de índices negativos cuando es procesada la entrada proporcionada por el usuario en Snapdragon Auto, Snapdragon Compute, Snapdragon Connect... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 312EXPL: 0CVE-2021-1914
https://notcve.org/view.php?id=CVE-2021-1914
08 Sep 2021 — Loop with unreachable exit condition may occur due to improper handling of unsupported input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un bucle con condición de salida no alcanzable debido al manejo inapropiado de entradas no admitidas en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1890
https://notcve.org/view.php?id=CVE-2021-1890
13 Jul 2021 — Improper length check of public exponent in RSA import key function could cause memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Una comprobación inapropiada de la longitud del exponente público en la función import key RSA podría causar corrupción en la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1889
https://notcve.org/view.php?id=CVE-2021-1889
13 Jul 2021 — Possible buffer overflow due to lack of length check in Trusted Application in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de la longitud en Trusted Application en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voi... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 310EXPL: 0CVE-2021-1888
https://notcve.org/view.php?id=CVE-2021-1888
13 Jul 2021 — Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de memoria en la función key parsing e import debido a una doble liberación de la misma asignación de la pila en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indust... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-415: Double Free •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1886
https://notcve.org/view.php?id=CVE-2021-1886
13 Jul 2021 — Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un manejo incorrecto de los punteros en el mecanismo de importación de claves de aplicaciones confiables podría causar daños en la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 354EXPL: 0CVE-2020-11292
https://notcve.org/view.php?id=CVE-2020-11292
09 Jun 2021 — Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento de búfer en el servicio de voz debido a una falta de comprobación de entrada de los parámetros en QMI Voice API en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Conne... • https://www.qualcomm.com/company/product-security/bulletins/june-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 994EXPL: 0CVE-2020-11289
https://notcve.org/view.php?id=CVE-2020-11289
07 May 2021 — Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una escritura fuera de límite puede ocurrir en el controlador de comandos TZ debido a una falta de comprobación de la ID del comando en los productos Snapdragon Auto, Snapdra... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •