Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.8

HIGH

CVE-2018-11983

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Error in kernel observed while accessing freed mask pointers after reallocating memory for mask table....

Affected Products : android
Published: Dec. 20, 2018

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2018-11982

In Snapdragon (Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 83...

Affected Products : android msm8996au_firmware msm8909w_firmware sd210_firmware sd625_firmware sd835_firmware sd205_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware +47 more products
Published: Sep. 20, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11980

When a fake broadcast/multicast 11w rmf without mmie received, since no proper length check in wma_process_bip, buffer overflow will happen in both cds_is_mmie_valid and qdf_nbuf_trim_tail in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, ...

Affected Products : qca6574au_firmware sdx55_firmware sdm660_firmware sm8150_firmware msm8996au_firmware apq8096au_firmware qca6174a_firmware qca9377_firmware qcs605_firmware sdx24_firmware +48 more products
Published: Dec. 18, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11976

ECDSA signature code leaks private keys from secure world to non-secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT...

Affected Products : ipq8074_firmware qca8081_firmware sd_8cx_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware +82 more products
Published: May. 24, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11971

Interrupt exit code flow may undermine access control policy set forth by secure world can lead to potential secure asset leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Ind...

Affected Products : sd_8cx_firmware sdm660_firmware qcs605_firmware mdm9650_firmware mdm9206_firmware mdm9607_firmware sda660_firmware sd_636_firmware mdm9655_firmware sdm630_firmware +32 more products
Published: Apr. 04, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11970

TZ App dynamic allocations not protected from XBL loader in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9650, MDM9655, QCS...

Affected Products : sd_8cx_firmware sdm660_firmware qcs605_firmware mdm9650_firmware mdm9206_firmware mdm9607_firmware sda660_firmware sd_636_firmware mdm9655_firmware sdm630_firmware +26 more products
Published: Apr. 04, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11968

Improper check before assigning value can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdrago...

Affected Products : qca6574au_firmware ipq8064_firmware ipq8074_firmware qca6574_firmware qca6584au_firmware qca8081_firmware qca9886_firmware qca9980_firmware sd_8cx_firmware sdm660_firmware +102 more products
Published: May. 24, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11967

Signature verification of the skel library could potentially be disabled as the memory region on the remote subsystem in which the library is loaded is allocated from userspace currently in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna...

Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qcs605_firmware sdx24_firmware +62 more products
Published: May. 24, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11966

Undefined behavior in UE while processing unknown IEI in OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MDM965...

Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qcs605_firmware sd_675_firmware +74 more products
Published: Apr. 04, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11965

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Anyone can execute proptrigger.sh which will lead to change in properties....

Affected Products : android
Published: Dec. 20, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11964

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Exposing the hashed content in /etc/passwd may lead to security issue....

Affected Products : android
Published: Dec. 20, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11963

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Buffer overread may occur due to non-null terminated strings while processing vsprintf in camera jpeg driver....

Affected Products : android
Published: Dec. 20, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11962

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Use-after-free issue in heap while loading audio effects config in audio effects factory....

Affected Products : android
Published: Feb. 11, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11961

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possibility of accessing out of bound vector index When updating some GNSS configurations....

Affected Products : android
Published: Dec. 20, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11960

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, A use after free condition can occur in the SPS driver which can lead to error in kernel....

Affected Products : android
Published: Dec. 20, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11958

Insufficient protection of keys in keypad can lead HLOS to gain access to confidential keypad input data in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Vo...

Affected Products : sdm660_firmware sd_450_firmware sd_625_firmware mdm9650_firmware mdm9206_firmware mdm9607_firmware sda660_firmware sd_636_firmware mdm9655_firmware sdm630_firmware +50 more products
Published: Apr. 04, 2019

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11956

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper mounting lead to device node and executable to be run from /dsp/ which presents a potential security issue....

Affected Products : android
Published: Nov. 27, 2018

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2018-11955

Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out of bound read in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

Affected Products : qca6574au_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9150_firmware qca6174a_firmware +86 more products
Published: Jun. 14, 2019

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2018-11953

While processing ssid IE length from remote AP, possible out-of-bounds access may occur due to crafted ssid IE length in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Sna...

Affected Products : qca6574au_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware mdm9150_firmware qca6174a_firmware qca9377_firmware mdm9650_firmware +50 more products
Published: May. 24, 2019

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11951

Improper access control in core module lead XBL_LOADER performs the ZI region clear for QTEE instead of XBL_SEC in Snapdragon Mobile in version SD 845, SD 850....

Affected Products : android sd_845_firmware sd_850_firmware sd_845 sd_850
Published: Oct. 26, 2018

Modified: Nov. 21, 2024

Showing 20 of 294196 Results

Browse by Apps

Latest CVE Feed

7.8

8.8

7.8

5.5

5.5

7.8

7.8

7.8

7.8

7.8

7.8

7.8

7.8

7.8

7.8

5.5

7.8

9.8

10.0

5.5

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable