Qualcomm

Mdm9655 Firmware

242 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-2235

  • EPSS 0.05%
  • Published 25.07.2019 17:15:11
  • Last modified 21.11.2024 04:40:29

Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer I...

7.8

CVE-2018-13896

  • EPSS 0.04%
  • Published 22.07.2019 14:15:11
  • Last modified 21.11.2024 03:48:16

XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics C...

10

CVE-2018-13924

  • EPSS 0.36%
  • Published 22.07.2019 14:15:11
  • Last modified 21.11.2024 03:48:20

Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Sn...

7.8

CVE-2018-13927

  • EPSS 0.03%
  • Published 22.07.2019 14:15:11
  • Last modified 21.11.2024 03:48:21

Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapd...

7.8

CVE-2018-5913

  • EPSS 0.09%
  • Published 14.06.2019 17:29:01
  • Last modified 21.11.2024 04:09:41

A non-time constant function memcmp is used which creates a side channel that could leak information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon In...

5.5

CVE-2017-8252

  • EPSS 0.04%
  • Published 14.06.2019 17:29:00
  • Last modified 21.11.2024 03:33:37

Kernel can inject faults in computations during the execution of TrustZone leading to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapd...

9.8

CVE-2018-13898

  • EPSS 0.29%
  • Published 14.06.2019 17:29:00
  • Last modified 21.11.2024 03:48:17

Out-of-Bounds write due to incorrect array index check in PMIC in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MD...

7.5

CVE-2018-13902

  • EPSS 0.26%
  • Published 14.06.2019 17:29:00
  • Last modified 21.11.2024 03:48:17

Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdrago...

9.1

CVE-2018-13906

  • EPSS 0.23%
  • Published 14.06.2019 17:29:00
  • Last modified 21.11.2024 03:48:18

The HMAC authenticating the message from QSEE is vulnerable to timing side channel analysis leading to potentially forged application message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivit...

5.3

CVE-2018-13907

  • EPSS 0.22%
  • Published 14.06.2019 17:29:00
  • Last modified 21.11.2024 03:48:18

While deserializing any key blob during key operations, buffer overflow could occur, exposing partial key information if any key operations are invoked in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics C...