CVSS: 7.5EPSS: 0%CPEs: 236EXPL: 0CVE-2021-1970
https://notcve.org/view.php?id=CVE-2021-1970
13 Jul 2021 — Possible out of bound read due to lack of length check of FT sub-elements in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Una posible lectura fuera de límites debido a una falta de comprobación de la longitud de los subelementos FT en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 356EXPL: 0CVE-2021-1955
https://notcve.org/view.php?id=CVE-2021-1955
13 Jul 2021 — Denial of service in SAP case due to improper handling of connections when association is rejected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una Denegación de servicio en el caso de SAP debido a un manejo inapropiado de las conexiones cuando la asociación es rechazada en Snapdragon Auto, Snapdragon Compute, ... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 410EXPL: 0CVE-2021-1953
https://notcve.org/view.php?id=CVE-2021-1953
13 Jul 2021 — Improper handling of received malformed FTMR request frame can lead to reachable assertion while responding with FTM1 frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un manejo inapropiado de la trama de petición FTMR malformada recibida puede conllevar a una afirmación de alcance mientras se respon... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 412EXPL: 0CVE-2021-1945
https://notcve.org/view.php?id=CVE-2021-1945
13 Jul 2021 — Possible out of bound read due to lack of length check of Bandwidth-NSS IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible lectura fuera de límites debido a una falta de comprobación de la longitud de Bandwidth-NSS IE en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 414EXPL: 0CVE-2021-1938
https://notcve.org/view.php?id=CVE-2021-1938
13 Jul 2021 — Possible assertion due to improper verification while creating and deleting the peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible aserción debido a una verificación inapropiada mientras se crea y elimina el peer en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.2EPSS: 0%CPEs: 242EXPL: 0CVE-2021-1931
https://notcve.org/view.php?id=CVE-2021-1931
13 Jul 2021 — Possible buffer overflow due to improper validation of buffer length while processing fast boot commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Un posible desbordamiento del búfer debido a una comprobación inapropiada de la longitud del búfer mientras se procesan comandos de arranque rápido en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrag... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1890
https://notcve.org/view.php?id=CVE-2021-1890
13 Jul 2021 — Improper length check of public exponent in RSA import key function could cause memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Una comprobación inapropiada de la longitud del exponente público en la función import key RSA podría causar corrupción en la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1889
https://notcve.org/view.php?id=CVE-2021-1889
13 Jul 2021 — Possible buffer overflow due to lack of length check in Trusted Application in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de la longitud en Trusted Application en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voi... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 310EXPL: 0CVE-2021-1888
https://notcve.org/view.php?id=CVE-2021-1888
13 Jul 2021 — Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de memoria en la función key parsing e import debido a una doble liberación de la misma asignación de la pila en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indust... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-415: Double Free •
CVSS: 8.4EPSS: 0%CPEs: 316EXPL: 0CVE-2021-1886
https://notcve.org/view.php?id=CVE-2021-1886
13 Jul 2021 — Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un manejo incorrecto de los punteros en el mecanismo de importación de claves de aplicaciones confiables podría causar daños en la memoria en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-787: Out-of-bounds Write •