Latest CVE Feed
-
8.0
HIGHCVE-2018-11294
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, WLAN handler indication from the firmware gets the information for 4 access categories. While processing this information only the first 3 AC infor... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
5.7
MEDIUMCVE-2018-11293
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, in wma_ndp_confirm_event_handler and wma_ndp_indication_event_handler, ndp_cfg len and num_ndp_app_info is from fw. If they are not checked, it may... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11292
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA6574AU, QCA6584, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820A, SDM429,... Read more
Affected Products : qca6574au_firmware sdm660_firmware msm8996au_firmware mdm9650_firmware msm8909w_firmware sd210_firmware sd625_firmware sd205_firmware mdm9206_firmware mdm9607_firmware +50 more products- Published: Sep. 20, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-11291
In Snapdragon (Automobile, Mobile, Wear) in version IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9378, QCA9379, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 6... Read more
Affected Products : qca6574au_firmware ipq8074_firmware qca6574_firmware qca6584au_firmware sdm660_firmware msm8996au_firmware qca6174a_firmware qca6564_firmware qca9377_firmware sd845_firmware +62 more products- Published: Sep. 20, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-11290
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, QCA6584, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820A, SD 845, SDM429, SDM439, SDM630, SDM632, SDM636... Read more
Affected Products : qca6574au_firmware sdm660_firmware msm8996au_firmware sd845_firmware mdm9650_firmware sd210_firmware sd625_firmware sdx20_firmware sd205_firmware mdm9206_firmware +44 more products- Published: Sep. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11289
Data truncation during higher to lower type conversion which causes less memory allocation than desired can lead to a buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon... Read more
Affected Products : ipq8074_firmware qca8081_firmware sd_8cx_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware +74 more products- Published: Feb. 25, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11288
Possible undefined behavior due to lack of size check in function for parameter segment_idx can lead to a read outside of the intended region in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9650, MDM9655, M... Read more
Affected Products : msm8996au_firmware sd_820_firmware sd_820a_firmware sd_835_firmware sdx24_firmware mdm9650_firmware mdm9206_firmware mdm9607_firmware mdm9655_firmware sd_410_firmware +30 more products- Published: Jan. 18, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-11287
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, S... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd845_firmware sd850_firmware mdm9650_firmware msm8909w_firmware sd210_firmware sd625_firmware sd835_firmware sd205_firmware +48 more products- Published: Sep. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11286
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while accessing global variable "debug_client" in multi-thread manner, Use after free issue occurs... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
9.3
HIGHCVE-2018-11285
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SDA660, SDM429,... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd845_firmware mdm9650_firmware msm8909w_firmware sd210_firmware sd625_firmware sd835_firmware sdx20_firmware sd205_firmware +54 more products- Published: Sep. 20, 2018
- Modified: Nov. 21, 2024
-
9.3
CRITICALCVE-2018-11284
Spoofed SMS can be used to send a large number of messages to the device which will in turn initiate a flood of registration updates with the server in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 6... Read more
Affected Products : android sdm660_firmware sd_625_firmware mdm9650_firmware sdx20_firmware mdm9206_firmware mdm9607_firmware sda660_firmware sd_636_firmware sdm630_firmware +15 more products- Published: Jan. 18, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11281
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while calling IPA_IOC_MDFY_RT_RULE IPA IOCTL, header entry is not checked before use. If IPA_IOC_MDFY_RT_RULE IOCTL called for header entries forme... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-11280
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing user-space there is no size validation of the NAT entry input. If the user input size of the NAT entry is greater than the max all... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-11279
Lack of check of input size can make device memory get corrupted because of buffer overflow in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM89... Read more
Affected Products : sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware sdx20_firmware +82 more products- Published: Jan. 18, 2019
- Modified: Nov. 21, 2024
-
7.1
HIGHCVE-2018-11278
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Venus HW searches for start code when decoding input bit stream buffers. If start code is not found in entire buffer, there is over-fetch beyond al... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11277
In Snapdragon (Automobile, Mobile, Wear) in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SDA660, the com.qualcomm.embms is a vendor package deploye... Read more
Affected Products : msm8996au_firmware sd845_firmware msm8909w_firmware sd210_firmware sd625_firmware sd835_firmware sd205_firmware sda660_firmware sd820_firmware sd450_firmware +30 more products- Published: Sep. 20, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11276
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, double free of memory allocation is possible in Kernel when it explicitly tries to free that memory on driver probe failure, since memory allocated... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-11275
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, when flashing image using FastbootLib if size is not divisible by block size, information leak occurs.... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11274
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, buffer overflow may occur when payload size is extremely large.... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-11273
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, 'voice_svc_dev' is allocated as a device-managed resource. If error 'cdev_alloc_err' occurs, 'device_destroy' will free all associated resources, i... Read more
Affected Products : android- Published: Sep. 18, 2018
- Modified: Nov. 21, 2024