CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2019-14023
https://notcve.org/view.php?id=CVE-2019-14023
21 Jan 2020 — String format issue will occur while processing HLOS data as there is no user input validation to ensure inputs are properly NULL terminated before string copy in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130 Se presentará un problema de formato de cadena mientras se procesan los datos HLOS, ya que no existe comprobación de entrada del usuario para asegurar... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin •
CVSS: 10.0EPSS: 0%CPEs: 94EXPL: 0CVE-2019-14013
https://notcve.org/view.php?id=CVE-2019-14013
21 Jan 2020 — While parsing invalid super index table, elements within super index table may exceed total chunk size and invalid data is read into the table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, M... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2019-14014
https://notcve.org/view.php?id=CVE-2019-14014
21 Jan 2020 — Possible buffer overflow when byte array receives incorrect input from reading source as array is not null terminated in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in Nicobar, SDM670, SDM710, SDM845, SM6150, SM8150, SM8250, SXR2130 Un posible desbordamiento del búfer cuando la matriz de bytes recibe una entrada incorrecta desde la fuente de lectura ya que la matriz no termina en null en los productos Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile en las vers... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 82EXPL: 0CVE-2019-14016
https://notcve.org/view.php?id=CVE-2019-14016
21 Jan 2020 — Integer overflow occurs while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, Nicobar, QCS605, QM215, SA6155P, SDA660, SDA845, SDM429,... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2019-14008
https://notcve.org/view.php?id=CVE-2019-14008
21 Jan 2020 — Possible null pointer dereference issue in location assistance data processing due to missing null check on resources before using it in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9607, MDM9650, SDM660, SDM845, SM8150, SM8250, SXR2130 Un posible problema de desreferencia del puntero null en el procesamiento de datos de la asistencia de localización debido a la falta de comprobación de null en los recursos antes de usarlos en los productos Snapdragon... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2019-14010
https://notcve.org/view.php?id=CVE-2019-14010
21 Jan 2020 — The device may enter into error state when some tool or application gets failure at 1st buffer map all and performs 2nd buffer map which happens to be at same physical address in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130 El dispositivo puede entrar en estado de error cuando alguna herramienta o aplicación presenta un fallo en todo el primer mapa... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 86EXPL: 0CVE-2019-14005
https://notcve.org/view.php?id=CVE-2019-14005
21 Jan 2020 — Buffer overflow occur while playing the clip which is nonstandard due to lack of check of size duration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, Nicobar, QCS605, QM2... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 88EXPL: 0CVE-2019-14006
https://notcve.org/view.php?id=CVE-2019-14006
21 Jan 2020 — Buffer overflow occur while playing the clip which is nonstandard due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, Nicobar, QCS605, QM215,... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 92EXPL: 0CVE-2019-14003
https://notcve.org/view.php?id=CVE-2019-14003
21 Jan 2020 — Null pointer exception can happen while parsing invalid MKV clip where cue information is parsed before segment information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, ... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 10.0EPSS: 0%CPEs: 92EXPL: 0CVE-2019-14004
https://notcve.org/view.php?id=CVE-2019-14004
21 Jan 2020 — Buffer overflow occurs while processing invalid MKV clip, which has invalid EBML size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS605, QM215, Renne... • https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •