CVSS: 8.4EPSS: 0%CPEs: 274EXPL: 0CVE-2021-30318
https://notcve.org/view.php?id=CVE-2021-30318
11 Feb 2022 — Improper validation of input when provisioning the HDCP key can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Una comprobación incorrecta de la entrada cuando se aprovisiona la clave HDCP puede conllevar a una corrupción de la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice... • https://www.qualcomm.com/company/product-security/bulletins/february-2022-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 220EXPL: 0CVE-2021-30353
https://notcve.org/view.php?id=CVE-2021-30353
13 Jan 2022 — Improper validation of function pointer type with actual function signature can lead to assertion in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Una comprobación inapropiada del tipo de puntero de función con la firma de la función real puede conllevar a una aserción en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon... • https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 220EXPL: 0CVE-2021-30330
https://notcve.org/view.php?id=CVE-2021-30330
13 Jan 2022 — Possible null pointer dereference due to improper validation of APE clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Una posible desreferencia de puntero null debido a una comprobación inapropiada del clip APE en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables • https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 268EXPL: 0CVE-2021-30319
https://notcve.org/view.php?id=CVE-2021-30319
13 Jan 2022 — Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Un posible desbordamiento de enteros debido a una comprobación inapropiada de los parámetros de longitud de los comandos mientras es procesado el comando WMI en Snapdragon Auto, Snapdragon Compu... • https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 220EXPL: 0CVE-2021-30300
https://notcve.org/view.php?id=CVE-2021-30300
13 Jan 2022 — Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Una posible denegación de servicio debido a una decodificación incorrecta de los datos hexadecimales del mensaje OTA SIB2 y a la asignación de un valor basura a la elección cuando e... • https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 9.8EPSS: 0%CPEs: 392EXPL: 0CVE-2021-30351
https://notcve.org/view.php?id=CVE-2021-30351
03 Jan 2022 — An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Puede producirse un acceso a la memoria fuera de límites debido a una comprobación inapropiada del número de fotogramas que son pasados durante la reproducción... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 420EXPL: 0CVE-2021-30337
https://notcve.org/view.php?id=CVE-2021-30337
03 Jan 2022 — Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible uso de memoria previamente liberada cuando la memoria shell del proceso es liberada usando la llamada IOCTL y la inicialización del proceso está en curs... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 478EXPL: 0CVE-2021-30303
https://notcve.org/view.php?id=CVE-2021-30303
03 Jan 2022 — Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un posible desbordamiento del búfer debido a una falta de comprobación de la longitud del búfer cuando es recibido un comando WMI segmentado en Snapdragon Aut... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 152EXPL: 0CVE-2021-30293
https://notcve.org/view.php?id=CVE-2021-30293
03 Jan 2022 — Possible assertion due to lack of input validation in PUSCH configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT Una posible aserción debido a una falta de comprobación de entrada en la configuración de PUSCH en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 206EXPL: 0CVE-2021-30289
https://notcve.org/view.php?id=CVE-2021-30289
03 Jan 2022 — Possible buffer overflow due to lack of range check while processing a DIAG command for COEX management in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación del rango mientras es procesado un comando DIAG para la administración de COEX en Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •