CVSS: 10.0EPSS: 0%CPEs: 494EXPL: 0CVE-2021-1976
https://notcve.org/view.php?id=CVE-2021-1976
17 Sep 2021 — A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Puede producirse un uso de memoria previamente liberada debido a una comprobación inapropiada de la dirección del dispositivo P2P en la trama de petición PD en Snapdragon Auto, Snapdragon Compute, Snapdra... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 430EXPL: 0CVE-2021-1941
https://notcve.org/view.php?id=CVE-2021-1941
09 Sep 2021 — Possible buffer over read issue due to improper length check on WPA IE string sent by peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Un posible problema de lectura excesiva del búfer debido a una comprobación inapropiada de la longitud de la cadena WPA IE enviada por el par en Snapdragon Auto, Snap... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 654EXPL: 0CVE-2021-1909
https://notcve.org/view.php?id=CVE-2021-1909
09 Sep 2021 — Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Se produce un desbordamiento del búfer en aplicaciones confiables debido a una falta de comprobación de la longitud de los parámetros en Snapdragon A... • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 554EXPL: 0CVE-2021-1972
https://notcve.org/view.php?id=CVE-2021-1972
08 Sep 2021 — Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible desbordamiento del búfer debido a una comprobación inapropiada de los tipos de dispositivos durante la búsqueda P2P en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 344EXPL: 0CVE-2021-1920
https://notcve.org/view.php?id=CVE-2021-1920
08 Sep 2021 — Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Puede producirse un desbordamiento de enteros debido a un manejo inapropiado de los paquetes RTCP entrantes en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Vo... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 366EXPL: 0CVE-2021-1916
https://notcve.org/view.php?id=CVE-2021-1916
08 Sep 2021 — Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento del búfer debido a una falta de comprobación de valores de índices negativos cuando es procesada la entrada proporcionada por el usuario en Snapdragon Auto, Snapdragon Compute, Snapdragon Connect... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 6.2EPSS: 0%CPEs: 350EXPL: 0CVE-2021-1904
https://notcve.org/view.php?id=CVE-2021-1904
08 Sep 2021 — Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables El proceso hijo puede filtrar información del proceso padre debido a que los pids numéricos son comparados y estos pid pueden reusarse en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-697: Incorrect Comparison •
CVSS: 9.1EPSS: 0%CPEs: 538EXPL: 0CVE-2020-11301
https://notcve.org/view.php?id=CVE-2020-11301
08 Sep 2021 — Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una autenticación inapropiada de tramas Wi-Fi de texto plano sin cifrar en una red cifrada puede ... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 0%CPEs: 252EXPL: 0CVE-2020-11264
https://notcve.org/view.php?id=CVE-2020-11264
08 Sep 2021 — Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Una autenticación inapropiada de las tramas de texto plano que no son EAPOL/WAPI durante el apretón de manos de cuatro vías puede conllevar a una inyección arbitraria de paq... • https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 356EXPL: 0CVE-2021-1955
https://notcve.org/view.php?id=CVE-2021-1955
13 Jul 2021 — Denial of service in SAP case due to improper handling of connections when association is rejected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una Denegación de servicio en el caso de SAP debido a un manejo inapropiado de las conexiones cuando la asociación es rechazada en Snapdragon Auto, Snapdragon Compute, ... • https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin • CWE-617: Reachable Assertion •