CVSS: 7.8EPSS: 0%CPEs: 510EXPL: 0CVE-2020-11165
https://notcve.org/view.php?id=CVE-2020-11165
09 Jun 2021 — Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Una corrupción de la memoria debido al desbordamiento del búfer cuando se copia el mensaje proporcionado por HLOS en el búfer sin comprobar la longitud del búfer en los productos Snapdragon Aut... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 574EXPL: 0CVE-2020-11178
https://notcve.org/view.php?id=CVE-2020-11178
09 Jun 2021 — Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking APPS confiable para sobrescribir la memoria CPZ de otro caso de uso, ya que TZ solo comprueba que la dirección física no se superponga con su memoria y ... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 452EXPL: 0CVE-2020-11161
https://notcve.org/view.php?id=CVE-2020-11161
09 Jun 2021 — Out-of-bounds memory access can occur while calculating alignment requirements for a negative width from external components in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Un acceso a la memoria fuera de límites puede ocurrir mientras se calculan los requisitos de alineación para un ancho negativo de componentes externos en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 9.4EPSS: 0%CPEs: 1006EXPL: 0CVE-2020-11159
https://notcve.org/view.php?id=CVE-2020-11159
09 Jun 2021 — Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una sobrelectura del búfer puede ocurrir mientras se procesa WPA, RSN IE de la baliza y la... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 650EXPL: 0CVE-2020-11134
https://notcve.org/view.php?id=CVE-2020-11134
09 Jun 2021 — Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame are not Properly validated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible escritura fuera de límites de la pila en... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 9.4EPSS: 0%CPEs: 782EXPL: 0CVE-2020-11126
https://notcve.org/view.php?id=CVE-2020-11126
09 Jun 2021 — Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible lectura fuera de límites mientras se analiza la trama WLAN debido a una falta de comprobación de la longitud del cuerpo y del encabezado en los p... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 8.4EPSS: 0%CPEs: 916EXPL: 0CVE-2021-1927
https://notcve.org/view.php?id=CVE-2021-1927
07 May 2021 — Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible uso de la memoria previamente liberada debido a una falta de comprobación null mientras se libera memoria en el controlador FastRPC en los productos Snapdragon Auto, Snapdrag... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 816EXPL: 0CVE-2021-1925
https://notcve.org/view.php?id=CVE-2021-1925
07 May 2021 — Possible denial of service scenario due to improper handling of group management action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Posible escenario de denegación de servicio debido a un manejo inapropiado de la trama de acción de administración del grupo en los productos Snapdragon Auto, Snap... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 810EXPL: 0CVE-2021-1915
https://notcve.org/view.php?id=CVE-2021-1915
07 May 2021 — Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un desbordamiento del búfer puede ocurrir debido a una comprobación inapropiada de la longitud de la información de la aplicación NDP en los productos Snapdragon Auto... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 748EXPL: 0CVE-2021-1910
https://notcve.org/view.php?id=CVE-2021-1910
07 May 2021 — Double free in video due to lack of input buffer length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una doble liberación en video debido a una falta de comprobación de la longitud del búfer de la entrada en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Vo... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-415: Double Free •