Qualcomm

Sd439 Firmware

149 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-11221

  • EPSS 0.05%
  • Published 17.03.2021 06:15:13
  • Last modified 21.11.2024 04:57:17

Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient checks in the syscall handler and leads to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdrag...

9.1

CVE-2020-11166

  • EPSS 0.29%
  • Published 17.03.2021 06:15:12
  • Last modified 21.11.2024 04:57:00

Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd...

7.8

CVE-2020-11204

  • EPSS 0.04%
  • Published 22.02.2021 07:15:14
  • Last modified 21.11.2024 04:57:14

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co...

8.8

CVE-2020-11269

  • EPSS 0.07%
  • Published 22.02.2021 07:15:14
  • Last modified 21.11.2024 04:57:34

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, S...

10

CVE-2020-11272

  • EPSS 0.39%
  • Published 22.02.2021 07:15:14
  • Last modified 21.11.2024 04:57:36

Before enqueuing a frame to the PE queue for further processing, an entry in a hash table can be deleted and using a stale version later can lead to use after free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ...

10

CVE-2020-11163

  • EPSS 0.36%
  • Published 22.02.2021 07:15:13
  • Last modified 21.11.2024 04:56:59

Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago...

10

CVE-2020-11170

  • EPSS 0.33%
  • Published 22.02.2021 07:15:13
  • Last modified 21.11.2024 04:57:01

Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...

7.8

CVE-2020-11208

Exploit
  • EPSS 0.5%
  • Published 12.11.2020 10:15:13
  • Last modified 21.11.2024 04:57:15

Out of Bound issue in DSP services while processing received arguments due to improper validation of length received as an argument' in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439

5.5

CVE-2020-11209

Exploit
  • EPSS 0.07%
  • Published 12.11.2020 10:15:13
  • Last modified 21.11.2024 04:57:16

Improper authorization in DSP process could allow unauthorized users to downgrade the library versions in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439