CVSS: 7.8EPSS: 0%CPEs: 124EXPL: 0CVE-2021-30279
https://notcve.org/view.php?id=CVE-2021-30279
03 Jan 2022 — Possible access control violation while setting current permission for VMIDs due to improper permission masking in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Una posible violación del control de acceso mientras es establecido el permiso actual para VMIDs debido al enmascaramiento inapropiado del permiso en Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Ind... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-281: Improper Preservation of Permissions •
CVSS: 7.1EPSS: 0%CPEs: 252EXPL: 0CVE-2021-30278
https://notcve.org/view.php?id=CVE-2021-30278
03 Jan 2022 — Improper input validation in TrustZone memory transfer interface can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una comprobación de entrada inapropiada en la interfaz de transferencia de memoria TrustZone puede conllevar a una divulgación de información en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 116EXPL: 0CVE-2021-30276
https://notcve.org/view.php?id=CVE-2021-30276
03 Jan 2022 — Improper access control while doing XPU re-configuration dynamically can lead to unauthorized access to a secure resource in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wired Infrastructure and Networking Un control de acceso inapropiado mientras es realizada la reconfiguración dinámica de la XPU puede conllevar a un acceso no autorizado a un recurso seguro en Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indu... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin •
CVSS: 9.3EPSS: 0%CPEs: 254EXPL: 0CVE-2021-30275
https://notcve.org/view.php?id=CVE-2021-30275
03 Jan 2022 — Possible integer overflow in page alignment interface due to lack of address and size validation before alignment in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un posible desbordamiento de enteros en la interfaz de alineación de páginas debido a una falta de comprobación de la dirección y el tamaño antes de la alineación en Snapdragon Auto, Snapdragon Compute, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.4EPSS: 0%CPEs: 252EXPL: 0CVE-2021-30274
https://notcve.org/view.php?id=CVE-2021-30274
03 Jan 2022 — Possible integer overflow in access control initialization interface due to lack and size and address validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un posible desbordamiento de enteros en la interfaz de inicialización del control de acceso debido a una falta de comprobación del tamaño y la dirección en Snapdragon Auto, Snapdragon Compute, Snapdragon Conne... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 392EXPL: 0CVE-2021-30272
https://notcve.org/view.php?id=CVE-2021-30272
03 Jan 2022 — Possible null pointer dereference in thread cache operation handler due to lack of validation of user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible desreferencia de puntero null en el administrador de operaciones de caché de hilos debido a una falta de comprobación de la e... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 310EXPL: 0CVE-2021-30270
https://notcve.org/view.php?id=CVE-2021-30270
03 Jan 2022 — Possible null pointer dereference in thread profile trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible desreferencia de puntero null en el administrador de trampas de perfil de hilo debido a una falta de comprobación del ID de hilo antes de desferenciarlo en Snapdra... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 234EXPL: 0CVE-2021-30269
https://notcve.org/view.php?id=CVE-2021-30269
03 Jan 2022 — Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una posible desreferencia de puntero null debido a una falta de comprobación de TLB para la dirección proporcionada por el usuario en Snapdragon Auto, Snapdragon Compute, Snapdragon Conn... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 60EXPL: 0CVE-2021-1918
https://notcve.org/view.php?id=CVE-2021-1918
03 Jan 2022 — Improper handling of resource allocation in virtual machines can lead to information exposure in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile Un manejo inapropiado de la asignación de recursos en máquinas virtuales puede conllevar a una exposición de información en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 0%CPEs: 234EXPL: 0CVE-2021-1894
https://notcve.org/view.php?id=CVE-2021-1894
03 Jan 2022 — Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un control de acceso inapropiado en TrustZone debido a un manejo inapropiado de errores mientras es manejada la clave de firma en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdr... • https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin • CWE-755: Improper Handling of Exceptional Conditions •