Qualcomm Qualcomm_215_firmware
62 CVEs affecting Qualcomm Qualcomm_215_firmware. Latest disclosed: 2019-11-06. Critical: 26, High: 28.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-2332 | Critical | 9.8 | 2019-11-06 | Memory corruption while accessing the memory as payload size is not validated before access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Sn… |
CVE-2019-2331 | Critical | 9.8 | 2019-11-06 | Possible Integer overflow because of subtracting two integers without checking if the result would overflow or not in Snapdragon Auto, Snapdragon Compute, Snap… |
CVE-2019-2325 | Critical | 9.8 | 2019-11-06 | Out of boundary access due to token received from ADSP and is used without validation as an index into the array in Snapdragon Auto, Snapdragon Compute, Snapdr… |
CVE-2019-2323 | Critical | 9.8 | 2019-11-06 | Lack of check to ensure crypto engine data passed by user is initialized can result in bus error in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IO… |
CVE-2019-2285 | Critical | 9.8 | 2019-11-06 | Out of bound write issue is observed while giving information about properties that have been set so far for playing video in Snapdragon Auto, Snapdragon Compu… |
CVE-2019-2283 | Critical | 9.8 | 2019-11-06 | Improper validation of read and write index of tx and rx fifo`s before calculating pointer can lead to out-of-bound access in Snapdragon Auto, Snapdragon Compu… |
CVE-2019-2258 | Critical | 9.8 | 2019-11-06 | Improper validation of array index causes OOB write and then leads to memory corruption in MMCP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT… |
CVE-2019-10541 | Critical | 9.8 | 2019-11-06 | Dereference on uninitialized buffer can happen when parsing FLV clip with corrupted codec specific data in Snapdragon Auto, Snapdragon Compute, Snapdragon Cons… |
CVE-2019-10534 | Critical | 9.8 | 2019-11-06 | Null-pointer dereference can occur while accessing the super index entry when it is not been allocated in Snapdragon Auto, Snapdragon Compute, Snapdragon Consu… |
CVE-2019-10533 | Critical | 9.8 | 2019-11-06 | Out of bound access due to improper validation of array index cause the index table entry to get corrupt in Snapdragon Auto, Snapdragon Compute, Snapdragon Con… |
CVE-2019-10531 | Critical | 9.8 | 2019-11-06 | Incorrect reading of system image resulting in buffer overflow when size of system image is increased in Snapdragon Auto, Snapdragon Mobile, Snapdragon Wearabl… |
CVE-2019-10522 | Critical | 9.8 | 2019-11-06 | While playing the clip which is nonstandard buffer overflow can occur while parsing in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon… |
CVE-2019-2294 | Critical | 9.8 | 2019-09-30 | Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, S… |
CVE-2019-2252 | Critical | 9.8 | 2019-09-30 | Classic buffer overflow vulnerability while playing the specific video whose Decode picture buffer size is more than 16 in Snapdragon Auto, Snapdragon Compute… |
CVE-2019-10539 | Critical | 9.8 | 2019-09-30 | Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Co… |
CVE-2019-10538 | Critical | 9.8 | 2019-09-30 | Lack of check of address range received from firmware response allows modem to respond arbitrary pages into its address range which can compromise HLOS in Snap… |
CVE-2019-2327 | Critical | 9.8 | 2019-07-25 | Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon In… |
CVE-2019-2322 | Critical | 9.8 | 2019-07-25 | Buffer overflow can occur when playing specific clip which is non-standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CVE-2019-2254 | Critical | 9.8 | 2019-07-25 | Position determination accuracy may be degraded due to wrongly decoded information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon… |
CVE-2019-2253 | Critical | 9.8 | 2019-07-25 | Buffer over-read can occur while parsing an ogg file with a corrupted comment block. in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… |