CVSS: 7.0EPSS: 0%CPEs: 778EXPL: 0CVE-2020-11262
https://notcve.org/view.php?id=CVE-2020-11262
09 Jun 2021 — A race between command submission and destroying the context can cause an invalid context being added to the list leads to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una carrera entre el envío de comandos y la destrucción del contexto puede causar que se agregue un contexto no válido a la lista de pistas para su uso después de la publicación libera... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 798EXPL: 0CVE-2020-11261 – Qualcomm Multiple Chipsets Improper Input Validation Vulnerability
https://notcve.org/view.php?id=CVE-2020-11261
09 Jun 2021 — Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de la memoria debido a una comprobación inapropiada para devolver el error cuando la aplicación del usuario pida una asignación de memoria de un tamaño enorme en los productos Snapdragon Auto, S... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-20: Improper Input Validation •
CVSS: 7.0EPSS: 0%CPEs: 720EXPL: 0CVE-2020-11250
https://notcve.org/view.php?id=CVE-2020-11250
09 Jun 2021 — Use after free due to race condition when reopening the device driver repeatedly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un uso de la memoria previamente liberada debido a una condición de carrera mientras vuelve a abrir el controlador del dispositivo repetidamente en los productos Snapdragon Auto, Snapdragon Compute, S... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 812EXPL: 1CVE-2020-11239 – Qualcomm kgsl Driver Use-After-Free
https://notcve.org/view.php?id=CVE-2020-11239
09 Jun 2021 — Use after free issue when importing a DMA buffer by using the CPU address of the buffer due to attachment is not cleaned up properly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un uso de la memoria previamente liberada al importar un búfer DMA usando la dirección de CPU del búfer debido a que el archivo adjunto no se limpia correctamente en los productos Snapdragon Auto,... • https://packetstorm.news/files/id/172839 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 686EXPL: 0CVE-2020-11240
https://notcve.org/view.php?id=CVE-2020-11240
09 Jun 2021 — Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de la memoria debido al tamaño del comando ioctl se estableció inapropiadamente en el tamaño de un puntero y no se asignó suficiente almacenamiento para la... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 7.0EPSS: 0%CPEs: 224EXPL: 0CVE-2020-11233
https://notcve.org/view.php?id=CVE-2020-11233
09 Jun 2021 — Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc without validation in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una condición de carrera de Time-of-check time-of-use mientras se procesaban las entradas de la partición debido al búfer recién diseñado, se volvió a leer desde mmc sin comprobación en los productos Sn... • https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 8.4EPSS: 0%CPEs: 916EXPL: 0CVE-2021-1927
https://notcve.org/view.php?id=CVE-2021-1927
07 May 2021 — Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible uso de la memoria previamente liberada debido a una falta de comprobación null mientras se libera memoria en el controlador FastRPC en los productos Snapdragon Auto, Snapdrag... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 794EXPL: 0CVE-2021-1905 – Qualcomm Multiple Chipsets Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2021-1905
07 May 2021 — Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un posible uso de la memoria previamente liberada debido a un manejo inapropiado de la asignación de la memoria de múltiples procesos simultáneamente. en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Con... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 830EXPL: 0CVE-2021-1895
https://notcve.org/view.php?id=CVE-2021-1895
07 May 2021 — Possible integer overflow due to improper length check while flashing an image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Un posible desbordamiento de enteros debido a una comprobación de longitud inapropiada mientras se muestra una imagen en los productos Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.4EPSS: 0%CPEs: 830EXPL: 0CVE-2021-1891
https://notcve.org/view.php?id=CVE-2021-1891
07 May 2021 — A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una posible ocurrencia de uso de la memoria previamente liberada en el controlador de audio puede ocurrir cuando los punteros no son manejados apropiadamente en los productos Sna... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-416: Use After Free •