Latest CVE Feed
-
7.8
HIGHCVE-2021-30359
The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation. Because the MS Installer allows regular users to repair their installation, an attacker running an installer befor... Read more
- EPSS Score: %0.06
- Published: Oct. 22, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-30358
Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent.... Read more
Affected Products : mobile_access_portal_agent- EPSS Score: %0.85
- Published: Oct. 19, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-30357
SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.... Read more
Affected Products : ssl_network_extender- EPSS Score: %29.98
- Published: Jun. 08, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-30356
A denial of service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files.... Read more
Affected Products : identity_agent- EPSS Score: %0.46
- Published: Apr. 22, 2021
- Modified: Nov. 21, 2024
-
9.3
HIGHCVE-2021-30355
Amazon Kindle e-reader prior to and including version 5.13.4 improperly manages privileges, allowing the framework user to elevate privileges to root.... Read more
- EPSS Score: %0.23
- Published: Sep. 01, 2021
- Modified: Nov. 21, 2024
-
9.3
HIGHCVE-2021-30354
Amazon Kindle e-reader prior to and including version 5.13.4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function CJBig2Image::expand() and results in a memory corruption that leads to code execution when parsing a crafted P... Read more
- EPSS Score: %0.88
- Published: Sep. 01, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-30353
Improper validation of function pointer type with actual function signature can lead to assertion in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wea... Read more
Affected Products : qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware +210 more products- EPSS Score: %0.36
- Published: Jan. 13, 2022
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-30351
An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware +382 more products- EPSS Score: %0.39
- Published: Jan. 03, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2021-30350
Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +182 more products- EPSS Score: %0.20
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
8.2
HIGHCVE-2021-30349
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, ... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +272 more products- EPSS Score: %0.11
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-30348
Improper validation of LLM utility timers availability can lead to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +272 more products- EPSS Score: %0.07
- Published: Jan. 03, 2022
- Modified: Nov. 21, 2024
-
9.3
HIGHCVE-2021-30347
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sd_8_gen1_5g_firmware sd865_5g_firmware sd870_firmware +118 more products- EPSS Score: %0.23
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-30346
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking... Read more
Affected Products : sw5100_firmware sw5100p_firmware wcd9385_firmware wcn3980_firmware wcn3988_firmware wcn3998_firmware wsa8810_firmware wsa8815_firmware wsa8830_firmware wsa8835_firmware +46 more products- EPSS Score: %0.10
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-30345
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking... Read more
Affected Products : sw5100_firmware sw5100p_firmware wcd9385_firmware wcn3980_firmware wcn3988_firmware wcn3998_firmware wsa8810_firmware wsa8815_firmware wsa8830_firmware wsa8835_firmware +46 more products- EPSS Score: %0.10
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-30344
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +284 more products- EPSS Score: %0.34
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-30343
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sd_8_gen1_5g_firmware sd865_5g_firmware sd870_firmware +118 more products- EPSS Score: %0.18
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-30342
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdr... Read more
Affected Products : aqt1000_firmware qca6420_firmware qca6430_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware +180 more products- EPSS Score: %0.36
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-30341
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +230 more products- EPSS Score: %0.36
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-30340
Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sd_8_gen1_5g_firmware sd865_5g_firmware sd870_firmware +96 more products- EPSS Score: %0.23
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
9.0
CRITICALCVE-2021-30339
Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking... Read more
Affected Products : qca6391_firmware sd_8_gen1_5g_firmware sd888_5g_firmware sw5100_firmware sw5100p_firmware wcd9380_firmware wcd9385_firmware wcn3980_firmware wcn3988_firmware wcn3998_firmware +100 more products- EPSS Score: %0.08
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024