CVSS: 8.4EPSS: 0%CPEs: 248EXPL: 0CVE-2021-30295
https://notcve.org/view.php?id=CVE-2021-30295
09 Sep 2021 — Possible heap overflow due to improper validation of local variable while storing current task information locally in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Un posible desbordamiento de la pila debido a una comprobación incorrecta de la variable local mientras se almacena localmente la información de la tarea actual en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 82EXPL: 0CVE-2021-30294
https://notcve.org/view.php?id=CVE-2021-30294
09 Sep 2021 — Potential null pointer dereference in KGSL GPU auxiliary command due to improper validation of user input in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile Una posible desreferencia de puntero null en el comando auxiliar de la GPU KGSL debido a una comprobación inapropiada de la entrada del usuario en Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 8.4EPSS: 0%CPEs: 82EXPL: 0CVE-2021-30290
https://notcve.org/view.php?id=CVE-2021-30290
09 Sep 2021 — Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile Una posible desreferencia de puntero null debido a una condición de carrera entre la señal de valla de la línea de tiempo y la destrucción de la línea de tiempo en Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 380EXPL: 0CVE-2021-1974
https://notcve.org/view.php?id=CVE-2021-1974
09 Sep 2021 — Possible buffer over read due to lack of alignment between map or unmap length of IPA SMMU and WLAN SMMU in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible lectura excesiva del búfer debido a una falta de alineación entre la longitud de mapeo o desmapeo de IPA SMMU y WLAN SMMU en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 242EXPL: 0CVE-2021-1971
https://notcve.org/view.php?id=CVE-2021-1971
09 Sep 2021 — Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Una posible afirmación debido a una falta de comprobación del estado de la capa física en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-617: Reachable Assertion •
CVSS: 6.7EPSS: 0%CPEs: 224EXPL: 0CVE-2021-1963
https://notcve.org/view.php?id=CVE-2021-1963
09 Sep 2021 — Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un posible uso de memoria previamente liberada debido a una falta de comprobación para el recuento de reglas en la tabla de filtros en el controlador IPA en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-416: Use After Free •
CVSS: 6.7EPSS: 0%CPEs: 226EXPL: 1CVE-2021-1961
https://notcve.org/view.php?id=CVE-2021-1961
09 Sep 2021 — Possible buffer overflow due to lack of offset length check while updating the buffer value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de la longitud del desplazamiento mientras se actualiza el valor del búfer en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, S... • https://github.com/tamirzb/CVE-2021-1961 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 276EXPL: 0CVE-2021-1960
https://notcve.org/view.php?id=CVE-2021-1960
09 Sep 2021 — Improper handling of ASB-C broadcast packets with crafted opcode in LMP can lead to uncontrolled resource consumption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una administración inapropiada de paquetes de difusión ASB-C con opcode diseñado en LMP puede conllevar a un consumo no controlado de recur... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 76EXPL: 0CVE-2021-1958
https://notcve.org/view.php?id=CVE-2021-1958
09 Sep 2021 — A race condition in fastrpc kernel driver for dynamic process creation can lead to use after free scenario in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables Una condición de carrera en el controlador del kernel fastrpc para la creación de procesos dinámicos puede conllevar a un escenario de uso de memoria previamente liberada en Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 214EXPL: 0CVE-2021-1952
https://notcve.org/view.php?id=CVE-2021-1952
09 Sep 2021 — Possible buffer over read occurs due to lack of length check of request buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Se produce una posible lectura excesiva del búfer debido a una falta de comprobación de la longitud del búfer de petición en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-125: Out-of-bounds Read •