Qualcomm Sd_415_firmware
283 CVEs affecting Qualcomm Sd_415_firmware. Latest disclosed: 2024-11-26. Critical: 155, High: 101.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-11076 | Critical | 9.8 | 2024-11-26 | On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to a… |
CVE-2019-2332 | Critical | 9.8 | 2019-11-06 | Memory corruption while accessing the memory as payload size is not validated before access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Sn… |
CVE-2019-2331 | Critical | 9.8 | 2019-11-06 | Possible Integer overflow because of subtracting two integers without checking if the result would overflow or not in Snapdragon Auto, Snapdragon Compute, Snap… |
CVE-2019-2325 | Critical | 9.8 | 2019-11-06 | Out of boundary access due to token received from ADSP and is used without validation as an index into the array in Snapdragon Auto, Snapdragon Compute, Snapdr… |
CVE-2019-2324 | Critical | 9.8 | 2019-11-06 | When ADSP is compromised, the audio port index that`s returned from ADSP might be out of the valid range and leads to out of boundary access in Snapdragon Auto… |
CVE-2019-2258 | Critical | 9.8 | 2019-11-06 | Improper validation of array index causes OOB write and then leads to memory corruption in MMCP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT… |
CVE-2019-10522 | Critical | 9.8 | 2019-11-06 | While playing the clip which is nonstandard buffer overflow can occur while parsing in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon… |
CVE-2019-10505 | Critical | 9.8 | 2019-11-06 | Out of bound access while processing a non-standard IE measurement request with length crossing past the size of frame in Snapdragon Auto, Snapdragon Consumer… |
CVE-2019-2327 | Critical | 9.8 | 2019-07-25 | Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon In… |
CVE-2019-2322 | Critical | 9.8 | 2019-07-25 | Buffer overflow can occur when playing specific clip which is non-standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CVE-2019-2254 | Critical | 9.8 | 2019-07-25 | Position determination accuracy may be degraded due to wrongly decoded information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon… |
CVE-2019-2253 | Critical | 9.8 | 2019-07-25 | Buffer over-read can occur while parsing an ogg file with a corrupted comment block. in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… |
CVE-2018-13924 | Critical | 9.8 | 2019-07-22 | Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Elect… |
CVE-2018-11955 | Critical | 9.8 | 2019-06-14 | Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out of bound read in Sn… |
CVE-2019-2245 | Critical | 9.8 | 2019-05-24 | Possible integer underflow can happen when calculating length of elementary stream map from invalid packet length which is later used to read from input buffer… |
CVE-2019-2244 | Critical | 9.8 | 2019-05-24 | Possible integer underflow can happen when calculating length of elementary stream info from invalid section length which is later used to read from input buff… |
CVE-2018-13925 | Critical | 9.8 | 2019-05-24 | Error in parsing PMT table frees the memory allocated for the map section but does not reset the context map section reference causing heap use after free issu… |
CVE-2018-13886 | Critical | 9.8 | 2019-05-24 | Unchecked OTA field in GNSS XTRA3 lead to integer overflow and then buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Con… |
CVE-2018-11953 | Critical | 9.8 | 2019-05-24 | While processing ssid IE length from remote AP, possible out-of-bounds access may occur due to crafted ssid IE length in Snapdragon Auto, Snapdragon Consumer E… |
CVE-2018-11271 | Critical | 9.8 | 2019-05-24 | Improper authentication can happen on Remote command handling due to inappropriate handling of events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec… |