Latest CVE Feed
-
7.8
HIGHCVE-2018-11968
Improper check before assigning value can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdrago... Read more
Affected Products : qca6574au_firmware ipq8064_firmware ipq8074_firmware qca6574_firmware qca6584au_firmware qca8081_firmware qca9886_firmware qca9980_firmware sd_8cx_firmware sdm660_firmware +102 more products- Published: May. 24, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11967
Signature verification of the skel library could potentially be disabled as the memory region on the remote subsystem in which the library is loaded is allocated from userspace currently in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qcs605_firmware sdx24_firmware +62 more products- Published: May. 24, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11966
Undefined behavior in UE while processing unknown IEI in OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MDM965... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qcs605_firmware sd_675_firmware +74 more products- Published: Apr. 04, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11965
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Anyone can execute proptrigger.sh which will lead to change in properties.... Read more
Affected Products : android- Published: Dec. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11964
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Exposing the hashed content in /etc/passwd may lead to security issue.... Read more
Affected Products : android- Published: Dec. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11963
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Buffer overread may occur due to non-null terminated strings while processing vsprintf in camera jpeg driver.... Read more
Affected Products : android- Published: Dec. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11962
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Use-after-free issue in heap while loading audio effects config in audio effects factory.... Read more
Affected Products : android- Published: Feb. 11, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11961
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possibility of accessing out of bound vector index When updating some GNSS configurations.... Read more
Affected Products : android- Published: Dec. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11960
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, A use after free condition can occur in the SPS driver which can lead to error in kernel.... Read more
Affected Products : android- Published: Dec. 20, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-11958
Insufficient protection of keys in keypad can lead HLOS to gain access to confidential keypad input data in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Vo... Read more
Affected Products : sdm660_firmware sd_450_firmware sd_625_firmware mdm9650_firmware mdm9206_firmware mdm9607_firmware sda660_firmware sd_636_firmware mdm9655_firmware sdm630_firmware +50 more products- Published: Apr. 04, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11956
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper mounting lead to device node and executable to be run from /dsp/ which presents a potential security issue.... Read more
Affected Products : android- Published: Nov. 27, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-11955
Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out of bound read in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon... Read more
Affected Products : qca6574au_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qca6174a_firmware +86 more products- Published: Jun. 14, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-11953
While processing ssid IE length from remote AP, possible out-of-bounds access may occur due to crafted ssid IE length in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Sna... Read more
Affected Products : qca6574au_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware mdm9150_firmware qca6174a_firmware qca9377_firmware mdm9650_firmware +50 more products- Published: May. 24, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-11951
Improper access control in core module lead XBL_LOADER performs the ZI region clear for QTEE instead of XBL_SEC in Snapdragon Mobile in version SD 845, SD 850.... Read more
- Published: Oct. 26, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11950
Unapproved TrustZone applications can be loaded and executed in Snapdragon Mobile in version SD 845, SD 850... Read more
- Published: Oct. 26, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-11949
Failure to initialize the extra buffer can lead to an out of buffer access in WLAN function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM89... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qcs605_firmware sdx24_firmware mdm9650_firmware +44 more products- Published: May. 24, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-11948
Exceeding the limit of usage entries are not tracked and the information will be lost causing the content to lose continuity in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer... Read more
Affected Products : sd_8cx_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware qcs605_firmware sd_675_firmware +50 more products- Published: Feb. 25, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-11947
The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music... Read more
Affected Products : qca6574au_firmware ipq8064_firmware qca9886_firmware qca9980_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820a_firmware sd_835_firmware +74 more products- Published: Jun. 14, 2019
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2018-11946
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, the UPnP daemon should not be running out of box because it enables port forwarding without authentication.... Read more
Affected Products : android- Published: Nov. 27, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-11945
Improper input validation in wireless service messaging module for data received from broadcast messages can lead to heap overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon In... Read more
Affected Products : sd_8cx_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qcs605_firmware +90 more products- Published: Feb. 25, 2019
- Modified: Nov. 21, 2024