CVSS: 8.4EPSS: 0%CPEs: 248EXPL: 0CVE-2021-30295
https://notcve.org/view.php?id=CVE-2021-30295
Possible heap overflow due to improper validation of local variable while storing current task information locally in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Un posible desbordamiento de la pila debido a una comprobación incorrecta de la variable local mientras se almacena localmente la información de la tarea actual en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 82EXPL: 0CVE-2021-30294
https://notcve.org/view.php?id=CVE-2021-30294
Potential null pointer dereference in KGSL GPU auxiliary command due to improper validation of user input in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile Una posible desreferencia de puntero null en el comando auxiliar de la GPU KGSL debido a una comprobación inapropiada de la entrada del usuario en Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 8.4EPSS: 0%CPEs: 82EXPL: 0CVE-2021-30290
https://notcve.org/view.php?id=CVE-2021-30290
Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile Una posible desreferencia de puntero null debido a una condición de carrera entre la señal de valla de la línea de tiempo y la destrucción de la línea de tiempo en Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 276EXPL: 0CVE-2021-1960
https://notcve.org/view.php?id=CVE-2021-1960
Improper handling of ASB-C broadcast packets with crafted opcode in LMP can lead to uncontrolled resource consumption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Una administración inapropiada de paquetes de difusión ASB-C con opcode diseñado en LMP puede conllevar a un consumo no controlado de recursos en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 214EXPL: 0CVE-2021-1952
https://notcve.org/view.php?id=CVE-2021-1952
Possible buffer over read occurs due to lack of length check of request buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Se produce una posible lectura excesiva del búfer debido a una falta de comprobación de la longitud del búfer de petición en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin • CWE-125: Out-of-bounds Read •