Latest qualcomm qcs404 firmware Vulnerabilities

CVE-2021-30327
Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Conne...
Qualcomm Apq8097 Firmware
Qualcomm Apq8097
Google Android
Qualcomm Apq8098
Google Android
Qualcomm Ipq6000
and 152 more
CVE-2020-11156
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr...
Qualcomm Qca6390 Firmware
Qualcomm Qca6390
Google Android
Google Android
Qualcomm Qcs404 Firmware
and 11 more
CVE-2020-11173
u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon ...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Google Android
Google Android
Google Android
and 61 more
CVE-2020-3690
u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, S...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Google Android
Google Android
Google Android
and 53 more
CVE-2020-3703
u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow ...
Google Android
Google Android
Qualcomm Apq8076 Firmware
Qualcomm Apq8076
Google Android
Google Android
and 77 more
CVE-2020-11162
u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdra...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Qualcomm Apq8009
Google Android
Google Android
and 75 more
CVE-2020-11174
u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, ...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
and 97 more
CVE-2020-3704
u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to I...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
and 87 more
CVE-2020-3638
u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, ...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Google Android
Google Android
and 27 more
CVE-2020-3684
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Sna...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8098
and 85 more
CVE-2020-3678
u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrag...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
and 13 more
CVE-2020-11125
u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ...
Qualcomm Agatti Firmware
Qualcomm Agatti
Google Android
Qualcomm Apq8009
Google Android
Google Android
and 91 more
CVE-2020-3679
Google Android
Google Android
Google Android
Google Android
Google Android
Qualcomm Nicobar
and 28 more
CVE-2019-14074
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 135 more
CVE-2020-3622
u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon A...
Qualcomm Apq8009
Qualcomm Apq8017
Google Android
Google Android
Qualcomm Apq8098
Google Android
and 190 more
CVE-2019-10527
u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapd...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 133 more
CVE-2019-13995
u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, ...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 125 more
CVE-2019-13992
u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume...
Google Android
Google Android
Google Android
Qualcomm Ipq6018
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
and 57 more
CVE-2019-10628
u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons...
Google Android
Qualcomm Apq8098
Google Android
Google Android
Google Android
Google Android
and 67 more
CVE-2019-10629
u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivi...
Google Android
Google Android
Google Android
Qualcomm Ipq6018
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
and 57 more
CVE-2020-3621
u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snap...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Google Android
and 121 more
CVE-2019-13994
u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential in...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 125 more
CVE-2020-11124
u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapd...
Google Android
Qualcomm Mdm9607
Google Android
Qualcomm Nicobar
Qualcomm Qcs404 Firmware
Google Android
and 29 more
CVE-2020-3640
u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdrag...
Google Android
Google Android
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
and 19 more
CVE-2020-3667
u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consum...
Google Android
Qualcomm Apq8098
Qualcomm Ipq5018 Firmware
Qualcomm Ipq5018
Google Android
Qualcomm Ipq6018
and 55 more
CVE-2020-3668
u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago...
Google Android
Qualcomm Ipq6018
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
and 41 more
CVE-2019-14065
u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8098
Google Android
Google Android
and 69 more
CVE-2020-3611
u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, S...
Google Android
Qualcomm Apq8098
Google Android
Google Android
Google Android
Qualcomm MSM8998
and 25 more
CVE-2020-3675
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons...
Qualcomm Ipq5018 Firmware
Qualcomm Ipq5018
Google Android
Qualcomm Ipq6018
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
and 33 more
CVE-2020-3636
u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Sna...
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
Google Android
Google Android
and 15 more
CVE-2019-10615
u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 109 more
CVE-2020-3669
u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connec...
Google Android
Qualcomm Apq8098
Qualcomm Ipq5018 Firmware
Qualcomm Ipq5018
Google Android
Qualcomm Ipq6018
and 55 more
CVE-2020-3619
u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 83 more
CVE-2019-13999
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 123 more
CVE-2019-10562
u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snap...
Google Android
Qualcomm Ipq6018
Google Android
Google Android
Google Android
Qualcomm MSM8998
and 51 more
CVE-2019-14089
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdrag...
Google Android
Google Android
Google Android
Qualcomm Nicobar
Qualcomm Qcs404 Firmware
Google Android
and 25 more
CVE-2019-14025
u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in...
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
Google Android
Google Android
and 15 more
CVE-2019-14119
u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon...
Google Android
Qualcomm Ipq6018
Google Android
Google Android
Google Android
Google Android
and 45 more
CVE-2020-3666
u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdrago...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 87 more
CVE-2019-14056
u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sn...
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
and 53 more
CVE-2020-3643
u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Ind...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 111 more
CVE-2019-13998
u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, ...
Google Android
Qualcomm Apq8009
Google Android
Qualcomm Apq8017
Google Android
Google Android
and 125 more
CVE-2020-3644
u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdra...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Qualcomm Apq8098
and 79 more
CVE-2019-14101
Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Co...
Google Android
Qualcomm Apq8009
Qualcomm Apq8096 Firmware
Google Android
Google Android
Google Android
and 108 more
CVE-2019-14124
Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamo...
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
Qualcomm Rennell Firmware
Google Android
and 13 more
CVE-2019-14130
Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastr...
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
Qualcomm Rennell Firmware
Google Android
and 13 more
CVE-2019-14123
Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mo...
Google Android
Google Android
Google Android
Qualcomm Qcs404 Firmware
Google Android
Qualcomm Rennell Firmware
and 13 more
CVE-2019-14094
Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons...
Google Android
Qualcomm Apq8009
Google Android
Google Android
Google Android
Google Android
and 122 more
CVE-2019-14043
Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrag...
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
and 54 more
CVE-2019-14042
Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consum...
Google Android
Google Android
Google Android
Google Android
Google Android
Qualcomm Nicobar
and 40 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203