Qualcomm Msm8905_firmware
159 CVEs affecting Qualcomm Msm8905_firmware. Latest disclosed: 2023-12-05. Critical: 71, High: 73.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2020-3639 | Critical | 9.8 | 2020-11-12 | u'When a non standard SIP sigcomp message is received from the network, then there may be chances of using more UDVM cycle or memory overflow' in Snapdragon Au… |
CVE-2020-11196 | Critical | 9.8 | 2020-11-12 | u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon Auto, Snapdragon Compute, Snap… |
CVE-2020-11193 | Critical | 9.8 | 2020-11-12 | u'Buffer over read can happen while parsing mkv clip due to improper typecasting of data returned from atomsize' in Snapdragon Auto, Snapdragon Compute, Snapdr… |
CVE-2020-3703 | Critical | 9.8 | 2020-11-02 | u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is… |
CVE-2020-3673 | Critical | 9.8 | 2020-11-02 | u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check to validate the index length' in Snapd… |
CVE-2020-3657 | Critical | 9.8 | 2020-11-02 | u'Remote code execution can happen by sending a carefully crafted POST query when Device configuration is accessed from a tethered client through webserver due… |
CVE-2020-3654 | Critical | 9.8 | 2020-11-02 | u'Buffer overflow occurs while processing SIP message packet due to lack of check of index validation before copying into it' in Snapdragon Auto, Snapdragon Co… |
CVE-2020-11116 | Critical | 9.8 | 2020-09-08 | u'Possible out of bound write while processing association response received from host due to lack of check of IE length' in Snapdragon Auto, Snapdragon Comput… |
CVE-2019-14052 | Critical | 9.8 | 2020-09-08 | u'Accessing an uninitialized data structure could result in partially copying of contents and thus incorrect processing' in Snapdragon Auto, Snapdragon Compute… |
CVE-2020-3699 | Critical | 9.8 | 2020-07-30 | Possible out of bound access while processing assoc response from host due to improper length check before copying into buffer in Snapdragon Auto, Snapdragon C… |
CVE-2020-3698 | Critical | 9.8 | 2020-07-30 | Out of bound write while QoS DSCP mapping due to improper input validation for data received from association response frame in Snapdragon Auto, Snapdragon Com… |
CVE-2020-3688 | Critical | 9.8 | 2020-07-30 | Possible buffer overflow while parsing mp4 clip with corrupted sample atoms due to improper validation of index in Snapdragon Auto, Snapdragon Compute, Snapdra… |
CVE-2020-3663 | Critical | 9.8 | 2020-06-22 | Buffer over-write may occur during fetching track decoder specific information if cb size exceeds buffer size in Snapdragon Auto, Snapdragon Compute, Snapdrago… |
CVE-2020-3661 | Critical | 9.8 | 2020-06-22 | Buffer overflow will happen while parsing mp4 clip with corrupted sample atoms values which exceeds MAX_UINT32 range due to lack of validation checks in Snapdr… |
CVE-2020-3660 | Critical | 9.8 | 2020-06-22 | Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connect… |
CVE-2020-3614 | Critical | 9.8 | 2020-06-22 | Possible buffer overflow while copying the frame to local buffer due to lack of check of length before copying in Snapdragon Auto, Snapdragon Compute, Snapdrag… |
CVE-2019-14080 | Critical | 9.8 | 2020-06-22 | Out of bound write can happen due to lack of check of array index value while parsing SDP attribute for SAR in Snapdragon Auto, Snapdragon Compute, Snapdragon… |
CVE-2019-14073 | Critical | 9.8 | 2020-06-22 | Copying RTCP messages into the output buffer without checking the destination buffer size which could lead to a remote stack overflow when processing large dat… |
CVE-2019-14062 | Critical | 9.8 | 2020-06-22 | Buffer overflows while decoding setup message from Network due to lack of check of IE message length received from network in Snapdragon Auto, Snapdragon Compu… |
CVE-2020-3641 | Critical | 9.8 | 2020-06-02 | Integer overflow may occur if atom size is less than atom offset as there is improper validation of atom size in Snapdragon Auto, Snapdragon Compute, Snapdrago… |