| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-11117 | 7.5 |
u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastr
|
28-04-2022 - 18:31 | 08-09-2020 - 10:15 | |
| CVE-2020-3702 | 3.3 |
u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic' in Snapdragon A
|
06-01-2022 - 14:19 | 08-09-2020 - 10:15 | |
| CVE-2020-3621 | 4.9 |
u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-3622 | 4.6 |
u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-3643 | 2.1 |
u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-13998 | 7.2 |
u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-13994 | 7.2 |
u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-3611 | 4.6 |
u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in A
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-13999 | 7.2 |
u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-3648 | 4.6 |
u'Possible out of bound write in DSP driver code due to lack of check of data received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wear
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-14115 | 2.1 |
u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secure domain as secure display is active' in Snapdrago
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-3644 | 2.1 |
u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-3619 | 6.9 |
u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-13995 | 7.2 |
u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapd
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-14074 | 7.2 |
u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Indus
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-14119 | 6.9 |
u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-10527 | 7.2 |
u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-11118 | 5.0 |
u'Information exposure issues while processing IE header due to improper check of beacon IE frame' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mo
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-10615 | 7.2 |
u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-11122 | 4.3 |
u'Null Pointer exception while playing crafted mkv file as data stream get deleted on secondary invalid configuration' in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in APQ8098, Bitra, Kamorta, SA6155P, Saipan, SM6150, SM7150, SM8150,
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-10562 | 7.2 |
u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2019-10596 | 7.2 |
u'Improper access control can lead signed process to guess pid of other processes and access their address space' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,
|
21-07-2021 - 11:39 | 08-09-2020 - 10:15 | |
| CVE-2020-11158 | 7.8 |
u'Null pointer dereference in HP OfficeJet Pro 8210 jbig2 filter due to lack of check of PDF font array leads to denial of service' in IPS PDF releases prior to IPS System 2020.2
|
14-09-2020 - 17:49 | 08-09-2020 - 10:15 | |
| CVE-2020-3640 | 7.2 |
u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mo
|
14-09-2020 - 16:54 | 08-09-2020 - 10:15 | |
| CVE-2020-3646 | 4.6 |
u'Buffer overflow seen as the destination buffer size is lesser than the source buffer size in video application' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Weara
|
14-09-2020 - 16:46 | 08-09-2020 - 10:15 | |
| CVE-2020-11120 | 4.6 |
u'Calling thread may free the data buffer pointer that was passed to the callback and later when event loop executes the callback, data buffer may not be valid and will lead to use after free scenario' in Snapdragon Auto, Snapdragon Compute, Snapdrag
|
14-09-2020 - 16:27 | 08-09-2020 - 10:15 | |
| CVE-2019-14025 | 2.1 |
u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon C
|
14-09-2020 - 16:23 | 08-09-2020 - 10:15 | |
| CVE-2020-11133 | 4.6 |
u'Possible out of bound array write in rxdco cal utility due to lack of array bound check' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MSM8998, QCS605, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710
|
14-09-2020 - 15:52 | 08-09-2020 - 10:15 | |
| CVE-2020-3636 | 4.6 |
u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kam
|
14-09-2020 - 15:41 | 08-09-2020 - 10:15 | |
| CVE-2020-3629 | 4.6 |
u'Stack out of bound issue occurs when making query to DSP capabilities due to wrong assumption was made on determining the buffer size for the DSP attributes' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT
|
14-09-2020 - 15:37 | 08-09-2020 - 10:15 | |
| CVE-2019-14065 | 7.2 |
u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infra
|
11-09-2020 - 17:26 | 08-09-2020 - 10:15 | |
| CVE-2019-14089 | 7.2 |
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon In
|
11-09-2020 - 17:14 | 08-09-2020 - 10:15 | |
| CVE-2019-14117 | 7.2 |
u'Whenever the page list is updated via privileged user, the previous list elements are freed but are not deleted from the list which results in a use after free causing an unhandled page fault exception in rmnet driver' in Snapdragon Auto, Snapdrago
|
11-09-2020 - 17:01 | 08-09-2020 - 10:15 | |
| CVE-2020-11115 | 5.0 |
u'Buffer over read occurs while processing information element from beacon due to lack of check of data received from beacon' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon In
|
11-09-2020 - 16:50 | 08-09-2020 - 10:15 | |
| CVE-2020-11116 | 10.0 |
u'Possible out of bound write while processing association response received from host due to lack of check of IE length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Indust
|
11-09-2020 - 16:45 | 08-09-2020 - 10:15 | |
| CVE-2020-11128 | 7.2 |
u'Possible out of bound access while copying the mask file content into the buffer without checking the buffer size' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Mus
|
11-09-2020 - 16:42 | 08-09-2020 - 10:15 | |
| CVE-2020-3647 | 4.6 |
u'Potential buffer overflow when accessing npu debugfs node "off"/"log" with large buffer size' in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, QCS405, SC8180X, SDX55, SM6150, SM7150, SM8150
|
11-09-2020 - 16:35 | 08-09-2020 - 10:15 | |
| CVE-2020-3667 | 10.0 |
u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobi
|
11-09-2020 - 16:33 | 08-09-2020 - 10:15 | |
| CVE-2020-3666 | 7.2 |
u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra
|
11-09-2020 - 15:57 | 08-09-2020 - 10:15 | |
| CVE-2020-3669 | 10.0 |
u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Indust
|
11-09-2020 - 15:49 | 08-09-2020 - 10:15 | |
| CVE-2020-3668 | 10.0 |
u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Co
|
11-09-2020 - 15:47 | 08-09-2020 - 10:15 | |
| CVE-2020-3675 | 10.0 |
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industri
|
11-09-2020 - 15:46 | 08-09-2020 - 10:15 | |
| CVE-2018-13903 | 9.3 |
u'Error in UE due to race condition in EPCO handling' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, MDM9205, MDM9206, MSM8909W, MSM8917, MSM8920, MSM893
|
11-09-2020 - 15:41 | 08-09-2020 - 10:15 | |
| CVE-2019-14052 | 10.0 |
u'Accessing an uninitialized data structure could result in partially copying of contents and thus incorrect processing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &
|
11-09-2020 - 14:27 | 08-09-2020 - 10:15 | |
| CVE-2019-14056 | 7.2 |
u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdra
|
11-09-2020 - 14:24 | 08-09-2020 - 10:15 | |
| CVE-2019-10628 | 7.2 |
u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer
|
11-09-2020 - 13:17 | 08-09-2020 - 10:15 | |
| CVE-2019-10629 | 7.2 |
u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial
|
11-09-2020 - 13:15 | 08-09-2020 - 10:15 | |
| CVE-2019-13992 | 7.2 |
u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IO
|
11-09-2020 - 13:12 | 08-09-2020 - 10:15 | |
| CVE-2020-3620 | 2.1 |
u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn
|
10-09-2020 - 13:48 | 08-09-2020 - 10:15 | |
| CVE-2020-3624 | 4.6 |
u'A potential buffer overflow exists due to integer overflow when parsing handler options due to wrong data type usage in operation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdr
|
10-09-2020 - 13:22 | 08-09-2020 - 10:15 |