Snapdragon Auto
by Qualcomm
CVEs (27)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-33210 | Hig | 0.55 | 8.4 | 0.00 | Oct 19, 2022 | Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon Auto | ||
| CVE-2022-25680 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia due to buffer overflow while processing count variable from client in Snapdragon Auto | ||
| CVE-2022-22106 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto | ||
| CVE-2022-22104 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto | ||
| CVE-2022-22102 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto | ||
| CVE-2022-22100 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto | ||
| CVE-2022-22099 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto | ||
| CVE-2022-22098 | Hig | 0.55 | 8.4 | 0.00 | Sep 2, 2022 | Memory corruption in multimedia driver due to untrusted pointer dereference while reading data from socket in Snapdragon Auto | ||
| CVE-2021-35114 | Hig | 0.55 | 8.4 | 0.00 | Jun 14, 2022 | Improper buffer initialization on the backend driver can lead to buffer overflow in Snapdragon Auto | ||
| CVE-2021-35115 | Hig | 0.55 | 8.4 | 0.00 | Apr 1, 2022 | Improper handling of multiple session supported by PVM backend can lead to use after free in Snapdragon Auto, Snapdragon Mobile | ||
| CVE-2021-35089 | Hig | 0.55 | 8.4 | 0.00 | Apr 1, 2022 | Possible buffer overflow due to lack of input IB amount validation while processing the user command in Snapdragon Auto | ||
| CVE-2021-30315 | Hig | 0.55 | 8.4 | 0.00 | Oct 20, 2021 | Improper handling of sensor HAL structure in absence of sensor can lead to use after free in Snapdragon Auto | ||
| CVE-2021-30306 | Hig | 0.55 | 8.4 | 0.00 | Oct 20, 2021 | Possible buffer over read due to improper buffer allocation for file length passed from user space in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile | ||
| CVE-2021-30305 | Hig | 0.55 | 8.4 | 0.00 | Oct 20, 2021 | Possible out of bound access due to lack of validation of page offset before page is inserted in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile | ||
| CVE-2021-30292 | Hig | 0.55 | 8.4 | 0.00 | Oct 20, 2021 | Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables | ||
| CVE-2021-30261 | Hig | 0.55 | 8.4 | 0.00 | Sep 17, 2021 | Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon… | ||
| CVE-2021-30290 | Hig | 0.55 | 8.4 | 0.00 | Sep 9, 2021 | Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile | ||
| CVE-2021-35117 | Hig | 0.53 | 8.2 | 0.01 | Apr 1, 2022 | An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music | ||
| CVE-2022-22103 | Hig | 0.51 | 7.8 | 0.00 | Jun 14, 2022 | Memory corruption in multimedia driver due to double free while processing data from user in Snapdragon Auto | ||
| CVE-2021-35102 | Hig | 0.51 | 7.8 | 0.00 | Jun 14, 2022 | Possible buffer overflow due to lack of validation for the length of NAI string read from EFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile |
- risk 0.55cvss 8.4epss 0.00
Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia due to buffer overflow while processing count variable from client in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Memory corruption in multimedia driver due to untrusted pointer dereference while reading data from socket in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Improper buffer initialization on the backend driver can lead to buffer overflow in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Improper handling of multiple session supported by PVM backend can lead to use after free in Snapdragon Auto, Snapdragon Mobile
- risk 0.55cvss 8.4epss 0.00
Possible buffer overflow due to lack of input IB amount validation while processing the user command in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Improper handling of sensor HAL structure in absence of sensor can lead to use after free in Snapdragon Auto
- risk 0.55cvss 8.4epss 0.00
Possible buffer over read due to improper buffer allocation for file length passed from user space in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
- risk 0.55cvss 8.4epss 0.00
Possible out of bound access due to lack of validation of page offset before page is inserted in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
- risk 0.55cvss 8.4epss 0.00
Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
- risk 0.55cvss 8.4epss 0.00
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon…
- risk 0.55cvss 8.4epss 0.00
Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
- risk 0.53cvss 8.2epss 0.01
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
- risk 0.51cvss 7.8epss 0.00
Memory corruption in multimedia driver due to double free while processing data from user in Snapdragon Auto
- risk 0.51cvss 7.8epss 0.00
Possible buffer overflow due to lack of validation for the length of NAI string read from EFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
Page 1 of 2