VYPR

Snapdragon Auto

by Qualcomm

CVEs (30)

  • CVE-2021-35102HigJun 14, 2022
    risk 0.51cvss 7.8epss 0.00

    Possible buffer overflow due to lack of validation for the length of NAI string read from EFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

  • CVE-2021-35094HigJun 14, 2022
    risk 0.51cvss 7.8epss 0.00

    Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

  • CVE-2022-22067HigSep 2, 2022
    risk 0.49cvss 7.5epss 0.00

    Potential memory leak in modem during the processing of NSA RRC Reconfiguration with invalid Radio Bearer Config in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

  • CVE-2021-30326HigFeb 11, 2022
    risk 0.49cvss 7.5epss 0.01

    Possible assertion due to improper size validation while processing the DownlinkPreemption IE in an RRC Reconfiguration/RRC Setup message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

  • CVE-2021-30301HigJan 13, 2022
    risk 0.49cvss 7.5epss 0.01

    Possible denial of service due to out of memory while processing RRC and NAS OTA message in Snapdragon Auto, Snapdragon Industrial IOT, Snapdragon Mobile

  • CVE-2021-1938HigJul 13, 2021
    risk 0.49cvss 7.5epss 0.01

    Possible assertion due to improper verification while creating and deleting the peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon…

  • CVE-2021-30269HigJan 3, 2022
    risk 0.47cvss 7.3epss 0.00

    Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music,…

  • CVE-2021-1957MedSep 9, 2021
    risk 0.42cvss 6.5epss 0.00

    Improper Access Control when ACL link encryption is failed and ACL link is not disconnected during reconnection with paired device in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

  • CVE-2022-22101MedSep 2, 2022
    risk 0.40cvss 6.2epss 0.00

    Denial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon Auto

  • CVE-2021-30314MedJan 13, 2022
    risk 0.40cvss 6.2epss 0.00

    Lack of validation for third party application accessing the service can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Page 2 of 2