Qualcomm

Qcc112 Firmware

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7

CVE-2020-11233

  • EPSS 0.03%
  • Veröffentlicht 09.06.2021 05:15:07
  • Zuletzt bearbeitet 21.11.2024 04:57:21

Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc without validation in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr...

7.8

CVE-2020-11289

  • EPSS 0.03%
  • Veröffentlicht 07.05.2021 09:15:08
  • Zuletzt bearbeitet 21.11.2024 04:57:44

Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdra...

6

CVE-2020-11293

  • EPSS 0.05%
  • Veröffentlicht 07.05.2021 09:15:08
  • Zuletzt bearbeitet 21.11.2024 04:57:46

Out of bound read can happen in Widevine TA while copying data to buffer from user data due to lack of check of buffer length received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT...

9.4

CVE-2020-11251

  • EPSS 0.24%
  • Veröffentlicht 07.04.2021 08:15:14
  • Zuletzt bearbeitet 21.11.2024 04:57:29

Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Sn...

9.1

CVE-2020-11188

  • EPSS 0.37%
  • Veröffentlicht 17.03.2021 06:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:08

Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon...

7.8

CVE-2020-11204

  • EPSS 0.04%
  • Veröffentlicht 22.02.2021 07:15:14
  • Zuletzt bearbeitet 21.11.2024 04:57:14

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co...

8.8

CVE-2020-11269

  • EPSS 0.07%
  • Veröffentlicht 22.02.2021 07:15:14
  • Zuletzt bearbeitet 21.11.2024 04:57:34

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, S...

10

CVE-2020-11170

  • EPSS 0.33%
  • Veröffentlicht 22.02.2021 07:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:01

Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...

8.8

CVE-2020-11177

  • EPSS 0.03%
  • Veröffentlicht 22.02.2021 07:15:13
  • Zuletzt bearbeitet 21.11.2024 04:57:04

User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S...