Qualcomm Sd 427 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Qualcomm Sd 427 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (174)
CVE-2019-2252 — CVSS 9.8 (critical): Classic buffer overflow vulnerability while playing the specific video whose Decode picture buffer size is more than 16 in Snapdragon Auto…
CVE-2018-11936 — CVSS 9.8 (critical): Index of array is processed in a wrong way inside a while loop and result in invalid index (-1 or something else) leads to out of bound…
CVE-2018-11937 — CVSS 9.8 (critical): Lack of input validation before copying can lead to a buffer over read in WLAN function in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2019-2325 — CVSS 9.8 (critical): Out of boundary access due to token received from ADSP and is used without validation as an index into the array in Snapdragon Auto…
CVE-2019-2256 — CVSS 9.8 (critical): An unprivileged user can craft a bitstream such that the payload encoded in the bitstream gains code execution in Snapdragon Auto…
CVE-2018-11945 — CVSS 9.8 (critical): Improper input validation in wireless service messaging module for data received from broadcast messages can lead to heap overflow in…
CVE-2019-2255 — CVSS 9.8 (critical): An unprivileged user can craft a bitstream such that the payload encoded in the bitstream gains code execution in Snapdragon Auto…
CVE-2019-2254 — CVSS 9.8 (critical): Position determination accuracy may be degraded due to wrongly decoded information in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2018-11949 — CVSS 9.8 (critical): Failure to initialize the extra buffer can lead to an out of buffer access in WLAN function in Snapdragon Auto, Snapdragon Compute…
CVE-2018-11955 — CVSS 9.8 (critical): Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out…
CVE-2019-2253 — CVSS 9.8 (critical): Buffer over-read can occur while parsing an ogg file with a corrupted comment block. in Snapdragon Auto, Snapdragon Connectivity…
CVE-2017-11076 — CVSS 9.8 (critical): On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware…
CVE-2019-2287 — CVSS 9.8 (critical): Improper validation for inputs received from firmware can lead to an out of bound write issue in video driver. in Snapdragon Auto…
CVE-2019-2324 — CVSS 9.8 (critical): When ADSP is compromised, the audio port index that`s returned from ADSP might be out of the valid range and leads to out of boundary…
CVE-2016-10498 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9635M, MDM9645, MDM9650, MDM9655, SD 210/SD…
CVE-2019-2249 — CVSS 9.8 (critical): Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute…
CVE-2019-2245 — CVSS 9.8 (critical): Possible integer underflow can happen when calculating length of elementary stream map from invalid packet length which is later used to…
CVE-2018-13886 — CVSS 9.8 (critical): Unchecked OTA field in GNSS XTRA3 lead to integer overflow and then buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2018-13887 — CVSS 9.8 (critical): Untrusted header fields in GNSS XTRA3 function can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer…
CVE-2019-2285 — CVSS 9.8 (critical): Out of bound write issue is observed while giving information about properties that have been set so far for playing video in Snapdragon…
CVE-2018-11271 — CVSS 9.8 (critical): Improper authentication can happen on Remote command handling due to inappropriate handling of events in Snapdragon Auto, Snapdragon…
CVE-2018-13898 — CVSS 9.8 (critical): Out-of-Bounds write due to incorrect array index check in PMIC in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics…
CVE-2016-10458 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427…
CVE-2018-11922 — CVSS 9.8 (critical): Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.
CVE-2016-10462 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD…
CVE-2019-2307 — CVSS 9.8 (critical): Possible integer underflow due to lack of validation before calculation of data length in 802.11 Rx management configuration in Snapdragon…
CVE-2019-2305 — CVSS 9.8 (critical): Out of bound access when reason code is extracted from frame data without validating the frame length in Snapdragon Auto, Snapdragon…
CVE-2018-11930 — CVSS 9.8 (critical): Improper input validation on input data which is used to locate and copy the additional IEs in WLAN function can lead to potential integer…
CVE-2019-2294 — CVSS 9.8 (critical): Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge…
CVE-2019-2244 — CVSS 9.8 (critical): Possible integer underflow can happen when calculating length of elementary stream info from invalid section length which is later used to…
CVE-2019-10542 — CVSS 9.8 (critical): Buffer over-read may occur when downloading a corrupted firmware file that has chunk length in header which doesn`t match the contents in…
CVE-2019-2323 — CVSS 9.8 (critical): Lack of check to ensure crypto engine data passed by user is initialized can result in bus error in Snapdragon Auto, Snapdragon Compute…
CVE-2019-10539 — CVSS 9.8 (critical): Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon…
CVE-2019-10534 — CVSS 9.8 (critical): Null-pointer dereference can occur while accessing the super index entry when it is not been allocated in Snapdragon Auto, Snapdragon…
CVE-2018-13911 — CVSS 9.8 (critical): Out of bounds memory read and access may lead to unexpected behavior in GNSS XTRA Parser in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2018-13924 — CVSS 9.8 (critical): Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute…
CVE-2018-13925 — CVSS 9.8 (critical): Error in parsing PMT table frees the memory allocated for the map section but does not reset the context map section reference causing heap…
CVE-2018-3591 — CVSS 9.8 (critical): In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9650…
CVE-2019-2322 — CVSS 9.8 (critical): Buffer overflow can occur when playing specific clip which is non-standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…
CVE-2019-2283 — CVSS 9.8 (critical): Improper validation of read and write index of tx and rx fifo`s before calculating pointer can lead to out-of-bound access in Snapdragon…
CVE-2019-10533 — CVSS 9.8 (critical): Out of bound access due to improper validation of array index cause the index table entry to get corrupt in Snapdragon Auto, Snapdragon…
CVE-2015-9152 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile IPQ4019, SD 210/SD…
CVE-2019-10528 — CVSS 9.8 (critical): Use after free issue in kernel while accessing freed mdlog session info and its attributes after closing the session in Snapdragon Auto…
CVE-2019-10522 — CVSS 9.8 (critical): While playing the clip which is nonstandard buffer overflow can occur while parsing in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2019-2259 — CVSS 9.8 (critical): Resource allocation error while playing the video whose dimensions are more than supported dimension in Snapdragon Auto, Snapdragon…
CVE-2019-2332 — CVSS 9.8 (critical): Memory corruption while accessing the memory as payload size is not validated before access in Snapdragon Auto, Snapdragon Compute…
CVE-2019-10509 — CVSS 9.8 (critical): Device record of the pairing device used after free during ACL disconnection in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2019-2258 — CVSS 9.8 (critical): Improper validation of array index causes OOB write and then leads to memory corruption in MMCP in Snapdragon Auto, Snapdragon Compute…
CVE-2015-9142 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9645, MDM9650, SD 210/SD 212/SD 205, SD 400…
CVE-2019-2331 — CVSS 9.8 (critical): Possible Integer overflow because of subtracting two integers without checking if the result would overflow or not in Snapdragon Auto…
CVE-2019-2327 — CVSS 9.8 (critical): Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2016-10445 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD…
CVE-2018-13906 — CVSS 9.1 (critical): The HMAC authenticating the message from QSEE is vulnerable to timing side channel analysis leading to potentially forged application…
CVE-2018-5879 — CVSS 8.8 (high): Improper length check while processing an MQTT message can lead to heap overflow in snapdragon mobile and snapdragon wear in versions…
CVE-2018-11279 — CVSS 8.8 (high): Lack of check of input size can make device memory get corrupted because of buffer overflow in snapdragon automobile, snapdragon mobile and…
CVE-2018-5881 — CVSS 8.8 (high): Improper validation of buffer length checks in the lwm2m device management protocol can leads to a buffer overflow in snapdragon mobile and…
CVE-2019-2316 — CVSS 8.8 (high): When computing the digest a local variable is used after going out of scope in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile…
CVE-2017-18170 — CVSS 8.8 (high): Improper input validation in Bluetooth Controller function can lead to possible memory corruption in Snapdragon Mobile in version QCA9379…
CVE-2017-18171 — CVSS 8.8 (high): Improper input validation for GATT data packet received in Bluetooth Controller function can lead to possible memory corruption in…
CVE-2018-13910 — CVSS 7.8 (high): Out-of-Bounds access in TZ due to invalid index calculated to check against DDR in Snapdragon Auto, Snapdragon Connectivity, Snapdragon…
CVE-2015-9217 — CVSS 7.8 (high): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD…
CVE-2017-18131 — CVSS 7.8 (high): In QTEE, an incorrect fuse value can be blown in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607…
CVE-2017-18141 — CVSS 7.8 (high): When a 3rd party TEE has been loaded it is possible for the non-secure world to create a secure monitor call which will give it access to…
CVE-2017-18172 — CVSS 7.8 (high): In a device, with screen size 1440x2560, the check of contiguous buffer will overflow on certain buffer size resulting in an Integer…
CVE-2017-18173 — CVSS 7.8 (high): In case of using an invalid android verified boot signature with very large length, an integer underflow occurs in Snapdragon Mobile in SD…
CVE-2017-18279 — CVSS 7.8 (high): Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, Snapdragon…
CVE-2017-18310 — CVSS 7.8 (high): ClientEnv exposes services 0-32 to HLOS in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MSM8909W, MSM8996AU, SD…
CVE-2017-18311 — CVSS 7.8 (high): XPU Master privilege escalation is possible due to improper access control of unused configuration xPU ports where unused configuration…
CVE-2017-18320 — CVSS 7.8 (high): QSEE unload attempt on a 3rd party TEE without previously loading results in a data abort in snapdragon automobile and snapdragon mobile in…
CVE-2017-18328 — CVSS 7.8 (high): Use after free in QSH client rule processing in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9640…
CVE-2017-18329 — CVSS 7.8 (high): Possible Buffer overflow when transmitting an RTP packet in snapdragon automobile and snapdragon wear in versions MDM9615, MDM9625…
CVE-2017-18330 — CVSS 7.8 (high): Buffer overflow in AES-CCM and AES-GCM encryption via initialization vector in snapdragon automobile, snapdragon mobile and snapdragon wear…
CVE-2017-8276 — CVSS 7.8 (high): Improper authorization involving a fuse in TrustZone in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206…
CVE-2018-11289 — CVSS 7.8 (high): Data truncation during higher to lower type conversion which causes less memory allocation than desired can lead to a buffer overflow in…
CVE-2018-11819 — CVSS 7.8 (high): Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon…
CVE-2018-11821 — CVSS 7.8 (high): Possible integer overflow may happen in WLAN during memory allocation in Snapdragon Mobile, Snapdragon Wear in version IPQ8074, MDM9206…
CVE-2018-11847 — CVSS 7.8 (high): Malicious TA can tag QSEE kernel memory and map to EL0, there by corrupting the physical memory as well it can be used to corrupt the QSEE…
CVE-2018-11849 — CVSS 7.8 (high): Lack of check on out of range of bssid parameter When processing scan start command will lead to buffer flow in Snapdragon Automobile…
CVE-2018-11853 — CVSS 7.8 (high): Lack of check on out of range for channels When processing channel list set command will lead to buffer flow in Snapdragon Mobile…
CVE-2018-11865 — CVSS 7.8 (high): Integer overflow may happen when calculating an internal structure size due to lack of validation of the input length in Snapdragon Mobile…
CVE-2018-11866 — CVSS 7.8 (high): Integer overflow may happen in WLAN when calculating an internal structure size due to lack of validation of the input length in Snapdragon…
CVE-2018-11871 — CVSS 7.8 (high): Buffer overwrite can happen in WLAN function while processing set pdev parameter command due to lack of input validation in Snapdragon…
CVE-2018-11888 — CVSS 7.8 (high): Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from other TA in Snapdragon Auto, Snapdragon…
CVE-2018-11899 — CVSS 7.8 (high): While processing radio connection status change events, Radio index is not properly validated in Snapdragon Auto, Snapdragon Connectivity…
CVE-2018-11923 — CVSS 7.8 (high): Improper buffer length check before copying can lead to integer overflow and then a buffer overflow in WMA event handler in Snapdragon…
CVE-2018-11924 — CVSS 7.8 (high): Improper buffer length validation in WLAN function can lead to a potential integer oveflow issue in Snapdragon Auto, Snapdragon Compute…
CVE-2018-11925 — CVSS 7.8 (high): Data length received from firmware is not validated against the max allowed size which can result in buffer overflow. in Snapdragon Auto…
CVE-2018-11929 — CVSS 7.8 (high): Lack of input validation in WLAN function can lead to potential heap overflow in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon…
CVE-2018-11931 — CVSS 7.8 (high): Improper access to HLOS is possible while transferring memory to CPZ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…
CVE-2018-11934 — CVSS 7.8 (high): Possible out of bounds write due to improper input validation while processing DO_ACS vendor command in Snapdragon Auto, Snapdragon…
CVE-2018-11938 — CVSS 7.8 (high): Improper input validation for argument received from HLOS can lead to buffer overflows and unexpected behavior in Snapdragon Auto…
CVE-2018-11966 — CVSS 7.8 (high): Undefined behavior in UE while processing unknown IEI in OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT…
CVE-2018-11967 — CVSS 7.8 (high): Signature verification of the skel library could potentially be disabled as the memory region on the remote subsystem in which the library…
CVE-2018-11968 — CVSS 7.8 (high): Improper check before assigning value can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity…
CVE-2018-13888 — CVSS 7.8 (high): There is potential for memory corruption in the RIL daemon due to de reference of memory outside the allocated array length in RIL in…
CVE-2018-13896 — CVSS 7.8 (high): XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at…
CVE-2018-13900 — CVSS 7.8 (high): Use-after-free vulnerability will occur as there is no protection for the route table`s rule in IPA driver in Snapdragon Auto, Snapdragon…
CVE-2018-13908 — CVSS 7.8 (high): Truncated access authentication token leads to weakened access control for stored secure application data in Snapdragon Auto, Snapdragon…
CVE-2018-5867 — CVSS 7.8 (high): Lack of checking input size can lead to buffer overflow In WideVine in snapdragon automobile, snapdragon mobile and snapdragon wear in…
CVE-2018-5880 — CVSS 7.8 (high): Improper data length check while processing an event report indication can lead to a buffer overflow in snapdragon mobile and snapdragon…
CVE-2018-5913 — CVSS 7.8 (high): A non-time constant function memcmp is used which creates a side channel that could leak information in Snapdragon Auto, Snapdragon…
CVE-2019-10491 — CVSS 7.8 (high): ADSP can be compromised since it`s a general-purpose CPU processing untrusted data in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2019-10492 — CVSS 7.8 (high): Boot image not getting verified by AVB in Snapdragon Auto, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, Qualcomm 215, SD…
CVE-2019-10496 — CVSS 7.8 (high): Lack of checking a variable received from driver and populating in Firmware data structure leads to buffer overflow in Snapdragon Auto…
CVE-2019-10497 — CVSS 7.8 (high): Use after free issue occurs If another instance of open for voice_svc node has been called from application without closing the previous…
CVE-2019-10498 — CVSS 7.8 (high): Buffer overflow scenario if the client sends more than 5 io_vec requests to the server in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2019-10501 — CVSS 7.8 (high): Possible use after free issue due to improper input validation in volume listener library in Snapdragon Auto, Snapdragon Compute…
CVE-2019-10512 — CVSS 7.8 (high): Payload size is not checked before using it as array index in audio in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT…
CVE-2019-10524 — CVSS 7.8 (high): Lack of check for a negative value returned for get_clk is wrongly interpreted as valid pointer and lead to use after free in clk driver in…
CVE-2019-2235 — CVSS 7.8 (high): Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto…
CVE-2019-2246 — CVSS 7.8 (high): Thread start can cause invalid memory writes to arbitrary memory location since the argument is passed by user to kernel in Snapdragon…
CVE-2019-2248 — CVSS 7.8 (high): Buffer overflow can occur if invalid header tries to overwrite the existing buffer which fix size allocation in Snapdragon Auto, Snapdragon…
CVE-2019-2263 — CVSS 7.8 (high): Access to freed memory can happen while reading from diag driver due to use after free issue in Snapdragon Auto, Snapdragon Connectivity…
CVE-2019-2264 — CVSS 7.8 (high): Null pointer dereference occurs for channel context while opening glink channel in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon…
CVE-2019-2272 — CVSS 7.8 (high): Buffer overflow can occur in display function due to lack of validation of header block size set by user. in Snapdragon Auto, Snapdragon…
CVE-2019-2277 — CVSS 7.8 (high): Out of bound read can happen due to lack of NULL termination on user controlled data in WLAN in Snapdragon Auto, Snapdragon Compute…
CVE-2019-2278 — CVSS 7.8 (high): User keystore signature is ignored in boot and can lead to bypass boot image signature verification in Snapdragon Auto, Snapdragon Consumer…
CVE-2019-2290 — CVSS 7.8 (high): Multiple open and close from multiple threads will lead camera driver to access destroyed session data pointer in Snapdragon Auto…
CVE-2019-2292 — CVSS 7.8 (high): Out of bound access can occur due to buffer copy without checking size of input received from WLAN firmware in Snapdragon Auto, Snapdragon…
CVE-2019-2293 — CVSS 7.8 (high): Pointer dereference while freeing IFE resources due to lack of length check of in port resource. in Snapdragon Consumer IOT, Snapdragon…
CVE-2019-2298 — CVSS 7.8 (high): Protection is missing while accessing md sessions info via macro which can lead to use-after-free in Snapdragon Auto, Snapdragon Compute…
CVE-2019-2299 — CVSS 7.8 (high): An out-of-bound write can be triggered by a specially-crafted command supplied by a userspace application. in Snapdragon Auto, Snapdragon…
CVE-2019-2306 — CVSS 7.8 (high): Improper casting of structure while handling the buffer leads to out of bound read in display in Snapdragon Auto, Snapdragon Connectivity…
CVE-2019-2308 — CVSS 7.8 (high): User application could potentially make RPC call to the fastrpc driver and the driver will allow the message to go through to the remote…
CVE-2019-2312 — CVSS 7.8 (high): When handling the vendor command there exists a potential buffer overflow due to lack of input validation of data buffer received in…
CVE-2019-2326 — CVSS 7.8 (high): Data token is received from ADSP and is used without validation as an index into the array leads to out of bound access in Snapdragon Auto…
CVE-2019-2328 — CVSS 7.8 (high): Possible buffer overflow when number of channels passed is more than size of channel mapping array in Snapdragon Auto, Snapdragon Compute…
CVE-2019-2333 — CVSS 7.8 (high): Buffer overflow due to improper validation of buffer size while IPA driver processing to perform read operation in Snapdragon Auto…
CVE-2019-2341 — CVSS 7.8 (high): Buffer overflow when the audio buffer size provided by user is larger than the maximum allowable audio buffer size. in Snapdragon Auto…
CVE-2019-2346 — CVSS 7.8 (high): Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon…
CVE-2018-11259 — CVSS 7.7 (high): Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a…
CVE-2019-2273 — CVSS 7.5 (high): IOMMU page fault while playing h265 video file leads to denial of service issue in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2019-10489 — CVSS 7.5 (high): Possible null-pointer dereference can occur while parsing avi clip during copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer…
CVE-2015-9194 — CVSS 7.5 (high): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210/SD 212/SD 205, SD 400, SD 425, SD 427, SD…
CVE-2017-18072 — CVSS 7.5 (high): In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9640, MDM9650…
CVE-2019-2334 — CVSS 7.5 (high): Null pointer dereferencing can happen when playing the clip with wrong block group id in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2015-9222 — CVSS 7.5 (high): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD…
CVE-2017-18126 — CVSS 7.5 (high): In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9640, MDM9650…
CVE-2018-13902 — CVSS 7.5 (high): Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in…
CVE-2019-10488 — CVSS 7.5 (high): Null pointer dereference can occur while parsing invalid chunks while playing the nonstandard clip in Snapdragon Auto, Snapdragon Compute…
CVE-2018-5892 — CVSS 7.5 (high): The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear.
CVE-2014-10058 — CVSS 7.5 (high): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210/SD 212/SD 205, SD 400, SD 425, SD 427, SD…
CVE-2018-11998 — CVSS 7.5 (high): While processing a packet decode request in MQTT, Race condition can occur leading to an out-of-bounds access in snapdragon mobile and…
CVE-2019-10495 — CVSS 7.3 (high): Arbitrary buffer write issue while processing sequence header during HEVC or AVC encoding. in Snapdragon Auto, Snapdragon Compute…
CVE-2019-2260 — CVSS 7.0 (high): A race condition occurs while processing perf-event which can lead to a use after free condition in Snapdragon Auto, Snapdragon Compute…
CVE-2019-2345 — CVSS 7.0 (high): Race condition while accessing DMA buffer in jpeg driver in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon…
CVE-2018-13909 — CVSS 7.0 (high): Metadata verification and partial hash system calls by bootloader may corrupt parallel hashing state in progress resulting in unexpected…
CVE-2019-10504 — CVSS 6.5 (medium): Firmware not able to send EXT scan response to host within 1 sec due to resource consumption issue in Snapdragon Auto, Snapdragon Consumer…
CVE-2019-2239 — CVSS 5.5 (medium): Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon…
CVE-2019-2243 — CVSS 5.5 (medium): Possible buffer overflow at the end of iterating loop while getting the version info and lead to information disclosure. in Snapdragon…
CVE-2018-13885 — CVSS 5.5 (medium): Possible memory overread may be lead to access of sensitive data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT…
CVE-2017-18322 — CVSS 5.5 (medium): Cryptographic key material leaked in WCDMA debug messages in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615…
CVE-2018-11948 — CVSS 5.5 (medium): Exceeding the limit of usage entries are not tracked and the information will be lost causing the content to lose continuity in Snapdragon…
CVE-2018-11942 — CVSS 5.5 (medium): Failure to initialize the reserved memory which is sent to the firmware might lead to exposure of 1 byte of uninitialized kernel SKB memory…
CVE-2018-11864 — CVSS 5.5 (medium): Bytes can be written to fuses from Secure region which can be read later by HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2018-11845 — CVSS 5.5 (medium): Usage of non-time-constant comparison functions can lead to information leakage through side channel analysis in Snapdragon Auto…
CVE-2019-2261 — CVSS 5.5 (medium): Unauthorized access from GPU subsystem to HLOS or other non secure subsystem memory can lead to information disclosure in Snapdragon Auto…
CVE-2019-2343 — CVSS 5.5 (medium): Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a…
CVE-2017-18319 — CVSS 5.5 (medium): Information leak in UIM API debug messages in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625…
CVE-2019-2275 — CVSS 5.5 (medium): While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations…
CVE-2017-15841 — CVSS 5.5 (medium): When HOST sends a Special command ID packet, Controller triggers a RAM Dump and FW reset in Snapdragon Mobile in version SD 410/12, SD 425…
CVE-2018-11820 — CVSS 5.5 (medium): Use of non-time constant memcmp function creates side channel that leaks information and leads to cryptographic issues in Snapdragon Auto…
CVE-2017-8252 — CVSS 5.5 (medium): Kernel can inject faults in computations during the execution of TrustZone leading to information disclosure in Snapdragon Auto, Snapdragon…
CVE-2017-11004 — CVSS 5.5 (medium): A non-secure user may be able to access certain registers in snapdragon automobile, snapdragon mobile and snapdragon wear in versions…
CVE-2017-18326 — CVSS 5.5 (medium): Cryptographic keys are printed in modem debug messages in snapdragon mobile and snapdragon wear in versions MDM9607, MDM9615, MDM9625…
CVE-2019-2330 — CVSS 5.5 (medium): improper input validation in allocation request for secure allocations can lead to page fault. in Snapdragon Auto, Snapdragon Compute…
CVE-2019-10515 — CVSS 5.5 (medium): DCI client which might be preemptively freed up might be accessed for transferring packets leading to kernel error in Snapdragon Auto…
CVE-2017-18324 — CVSS 5.5 (medium): Cryptographic key material leaked in debug messages - GERAN in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615…
CVE-2015-9218 — CVSS 5.5 (medium): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD…
CVE-2019-2236 — CVSS 5.5 (medium): Null pointer dereference during secure application termination using specific application ids. in Snapdragon Auto, Snapdragon Compute…
CVE-2018-11947 — CVSS 5.5 (medium): The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consumer…
CVE-2018-11976 — CVSS 5.5 (medium): ECDSA signature code leaks private keys from secure world to non-secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon…
CVE-2018-11958 — CVSS 5.5 (medium): Insufficient protection of keys in keypad can lead HLOS to gain access to confidential keypad input data in Snapdragon Auto, Snapdragon…
CVE-2018-13907 — CVSS 5.3 (medium): While deserializing any key blob during key operations, buffer overflow could occur, exposing partial key information if any key operations…