| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-2320 | 10.0 |
Possible out of bounds write in a MT SMS/SS scenario due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Sn
|
21-07-2021 - 11:39 | 12-12-2019 - 09:15 | |
| CVE-2019-10494 | 4.4 |
Race condition between the camera functions due to lack of resource lock which will lead to memory corruption and UAF issue in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag
|
21-07-2021 - 11:39 | 12-12-2019 - 09:15 | |
| CVE-2019-10559 | 7.5 |
Accessing data buffer beyond the available data while parsing ogg clip can lead to null-pointer dereference and then memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT
|
21-07-2021 - 11:39 | 12-12-2019 - 09:15 | |
| CVE-2019-2319 | 4.6 |
HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9
|
24-08-2020 - 17:37 | 12-12-2019 - 09:15 | |
| CVE-2019-2338 | 3.6 |
Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial I
|
24-08-2020 - 17:37 | 12-12-2019 - 09:15 | |
| CVE-2019-10618 | 2.1 |
Driver may access an invalid address while processing IO control due to lack of check of address validation in Snapdragon Connectivity in QCA6390
|
24-08-2020 - 17:37 | 12-12-2019 - 09:15 | |
| CVE-2019-2337 | 7.8 |
While Skipping unknown IES, EMM is reading the buffer even if the no of bytes to read are more than message length which may cause device to shutdown in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag
|
13-12-2019 - 21:00 | 12-12-2019 - 09:15 | |
| CVE-2019-10571 | 4.6 |
Snapshot of IB can lead to invalid address access due to missing check for size in the related function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag
|
13-12-2019 - 20:48 | 12-12-2019 - 09:15 | |
| CVE-2019-2310 | 5.0 |
Out of bound read would occur while trying to read action category and action ID without validating the action length of the Rx Frame body in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industria
|
13-12-2019 - 20:28 | 12-12-2019 - 09:15 | |
| CVE-2019-2321 | 7.2 |
Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT,
|
13-12-2019 - 20:26 | 12-12-2019 - 09:15 | |
| CVE-2019-2288 | 7.2 |
Out of bound write in TZ while copying the secure dump structure on HLOS provided buffer as a part of memory dump in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,
|
13-12-2019 - 20:23 | 12-12-2019 - 09:15 | |
| CVE-2019-10592 | 4.6 |
Possible integer overflow while multiplying two integers of 32 bit in QDCM API of get display modes as there is no check on the maximum mode count in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon
|
13-12-2019 - 20:14 | 12-12-2019 - 09:15 | |
| CVE-2019-10511 | 10.0 |
Possibility of memory overflow while decoding GSNDCP compressed mode PDU in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in
|
13-12-2019 - 20:10 | 12-12-2019 - 09:15 | |
| CVE-2019-10545 | 2.1 |
Null pointer dereference issue in kernel due to missing check related to LLC support in GPU in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music in QCS605, SDM670, SDM7
|
13-12-2019 - 19:41 | 12-12-2019 - 09:15 | |
| CVE-2019-10493 | 10.0 |
Position determination accuracy may be degraded due to wrongly decoded information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, MDM9206, MDM9207C, MDM9
|
13-12-2019 - 17:35 | 12-12-2019 - 09:15 | |
| CVE-2019-10555 | 4.6 |
Buffer overflow can occur due to usage of wrong datatype and missing length check before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna
|
13-12-2019 - 15:51 | 12-12-2019 - 09:15 | |
| CVE-2019-10484 | 2.1 |
Use after free issue occurs when command destructors access dynamically allocated response buffer which is already deallocated during previous command teardwon sequence in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Indus
|
12-12-2019 - 20:35 | 12-12-2019 - 09:15 | |
| CVE-2019-10485 | 7.8 |
Infinite loop while decoding compressed data can lead to overrun condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables i
|
12-12-2019 - 20:29 | 12-12-2019 - 09:15 |