Qualcomm

Qca4004 Firmware

159 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-11199

  • EPSS 0.05%
  • Veröffentlicht 17.03.2021 06:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:13

HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd...

5.5

CVE-2020-11221

  • EPSS 0.05%
  • Veröffentlicht 17.03.2021 06:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:17

Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient checks in the syscall handler and leads to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdrag...

9.1

CVE-2020-11166

  • EPSS 0.29%
  • Veröffentlicht 17.03.2021 06:15:12
  • Zuletzt bearbeitet 21.11.2024 04:57:00

Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd...

6

CVE-2020-3664

  • EPSS 0.09%
  • Veröffentlicht 22.02.2021 07:15:15
  • Zuletzt bearbeitet 21.11.2024 05:31:31

Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrag...

7.8

CVE-2020-11204

  • EPSS 0.04%
  • Veröffentlicht 22.02.2021 07:15:14
  • Zuletzt bearbeitet 21.11.2024 04:57:14

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co...

8.8

CVE-2020-11269

  • EPSS 0.07%
  • Veröffentlicht 22.02.2021 07:15:14
  • Zuletzt bearbeitet 21.11.2024 04:57:34

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, S...

10

CVE-2020-11170

  • EPSS 0.33%
  • Veröffentlicht 22.02.2021 07:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:01

Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...

8.8

CVE-2020-11177

  • EPSS 0.03%
  • Veröffentlicht 22.02.2021 07:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:04

User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S...

7.8

CVE-2020-11195

  • EPSS 0.03%
  • Veröffentlicht 22.02.2021 07:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:12

Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, ...