Latest qualcomm sd 410 firmware Vulnerabilities

CVE-2019-2275
While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Sn...
Google Android
Google Android
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 81 more
CVE-2019-2294
Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivit...
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 89 more
CVE-2019-2235
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 65 more
CVE-2019-2238
Lack of check of data type can lead to subsequent loop-expression potentially go negative and the condition will still evaluate to true leading to buffer underflow. in Snapdragon Auto, Snapdragon Comp...
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
and 29 more
CVE-2019-2239
Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics C...
Google Android
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
and 95 more
CVE-2019-2237
Failure in taking appropriate action to handle the error case If keypad gpio deactivation fails leads to silent failure scenario and subsequent logic gets executed everytime in Snapdragon Auto, Snapdr...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 29 more
CVE-2019-2241
While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Com...
Google Android
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
and 57 more
CVE-2019-2236
Null pointer dereference during secure application termination using specific application ids. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connecti...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 71 more
CVE-2018-13896
XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdrag...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
and 67 more
CVE-2018-13927
Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 43 more
CVE-2018-13908
Truncated access authentication token leads to weakened access control for stored secure application data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electroni...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 89 more
CVE-2018-13898
Out-of-Bounds write due to incorrect array index check in PMIC in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 75 more
CVE-2018-13909
Metadata verification and partial hash system calls by bootloader may corrupt parallel hashing state in progress resulting in unexpected behavior in Snapdragon Auto, Snapdragon Compute, Snapdragon Con...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 55 more
CVE-2018-5913
A non-time constant function memcmp is used which creates a side channel that could leak information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Co...
Google Android
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
and 97 more
CVE-2018-13907
While deserializing any key blob during key operations, buffer overflow could occur, exposing partial key information if any key operations are invoked in Snapdragon Auto, Snapdragon Compute, Snapdrag...
Qualcomm Pq4019 Firmware
Qualcomm Pq4019
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
and 99 more
CVE-2018-13910
Out-of-Bounds access in TZ due to invalid index calculated to check against DDR in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snap...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 45 more
CVE-2018-13906
The HMAC authenticating the message from QSEE is vulnerable to timing side channel analysis leading to potentially forged application message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connect...
Qualcomm Ipq4019 Firmware
Qualcomm Ipq4019
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
and 99 more
CVE-2018-11830
Improper input validation in QCPE create function may lead to integer overflow in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 10 more
CVE-2018-12013
Improper authentication in locked memory region can lead to unprivilged access to the memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer I...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 45 more
CVE-2018-11976
ECDSA signature code leaks private keys from secure world to non-secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon ...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 87 more
CVE-2018-12004
Secure keypad is unlocked with secure display still intact in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 45 more
CVE-2018-12012
While updating blacklisting region shared buffered memory region is not validated against newly updated black list, causing boot-up to be compromised in Snapdragon Auto, Snapdragon Compute, Snapdragon...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 37 more
CVE-2018-11970
TZ App dynamic allocations not protected from XBL loader in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 31 more
CVE-2017-8252
Kernel can inject faults in computations during the execution of TrustZone leading to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electr...
Qualcomm Ipq4019 Firmware
Qualcomm Ipq4019
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
and 105 more
CVE-2018-11971
Interrupt exit code flow may undermine access control policy set forth by secure world can lead to potential secure asset leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronic...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 37 more
CVE-2018-11958
Insufficient protection of keys in keypad can lead HLOS to gain access to confidential keypad input data in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snap...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 55 more
CVE-2018-11948
Exceeding the limit of usage entries are not tracked and the information will be lost causing the content to lose continuity in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon...
Google Android
Qualcomm Msm8996au
Qualcomm Qcs605 Firmware
Google Android
Qualcomm Sd 410 Firmware
Google Android
and 55 more
CVE-2018-11935
Improper input validation might result in incorrect app id returned to the caller Instead of returning failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Elec...
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
Qualcomm Mdm9655 Firmware
Qualcomm Mdm9655
and 51 more
CVE-2018-11932
Improper input validation can lead RW access to secure subsystem from HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Con...
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
Qualcomm Mdm9655 Firmware
Qualcomm Mdm9655
Google Android
Qualcomm Msm8996au
and 35 more
CVE-2018-11938
Improper input validation for argument received from HLOS can lead to buffer overflows and unexpected behavior in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Elec...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 85 more
CVE-2018-11289
Data truncation during higher to lower type conversion which causes less memory allocation than desired can lead to a buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 79 more
CVE-2018-11864
Bytes can be written to fuses from Secure region which can be read later by HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdrag...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 79 more
CVE-2018-11931
Improper access to HLOS is possible while transferring memory to CPZ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer ...
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 75 more
CVE-2018-11820
Use of non-time constant memcmp function creates side channel that leaks information and leads to cryptographic issues in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
and 87 more
CVE-2018-11945
Improper input validation in wireless service messaging module for data received from broadcast messages can lead to heap overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electroni...
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 95 more
CVE-2018-11845
Usage of non-time-constant comparison functions can lead to information leakage through side channel analysis in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Elect...
Google Android
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 75 more
CVE-2018-13904
Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consum...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
and 21 more
CVE-2018-11847
Malicious TA can tag QSEE kernel memory and map to EL0, there by corrupting the physical memory as well it can be used to corrupt the QSEE kernel and compromise the whole TEE in Snapdragon Auto, Snapd...
Google Android
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
and 61 more
CVE-2018-11888
Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from other TA in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electroni...
Google Android
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
Qualcomm Mdm9655 Firmware
and 53 more
CVE-2017-8276
Improper authorization involving a fuse in TrustZone in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, S...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Google Android
Qualcomm Msm8996au
and 61 more
CVE-2017-18326
Cryptographic keys are printed in modem debug messages in snapdragon mobile and snapdragon wear in versions MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD...
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9615 Firmware
Google Android
Qualcomm Mdm9625 Firmware
Google Android
and 63 more
CVE-2018-11999
Improper input validation in trustzone can lead to denial of service in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Google Android
Qualcomm Mdm9635m
and 37 more
CVE-2017-18322
Cryptographic key material leaked in WCDMA debug messages in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9615 Firmware
Google Android
and 57 more
CVE-2017-18324
Cryptographic key material leaked in debug messages - GERAN in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, MSM8909W, SD 2...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9615 Firmware
Google Android
and 59 more
CVE-2018-5869
Improper input validation in the QTEE keymaster app can lead to invalid memory access in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 410/12, ...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Google Android
Google Android
and 21 more
CVE-2017-11004
A non-secure user may be able to access certain registers in snapdragon automobile, snapdragon mobile and snapdragon wear in versions IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU, ...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 69 more
CVE-2018-11279
Lack of check of input size can make device memory get corrupted because of buffer overflow in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM96...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9615 Firmware
Google Android
and 87 more
CVE-2017-18319
Information leak in UIM API debug messages in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205,...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Qualcomm Mdm9615 Firmware
Google Android
and 55 more
CVE-2018-5867
Lack of checking input size can lead to buffer overflow In WideVine in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU,...
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
Google Android
Qualcomm Mdm9635m
and 71 more
CVE-2017-18330
Buffer overflow in AES-CCM and AES-GCM encryption via initialization vector in snapdragon automobile, snapdragon mobile and snapdragon wear in versions IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9640, MD...
Qualcomm Ipq8074 Firmware
Qualcomm Ipq8074
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Google Android
Qualcomm Mdm9607
and 73 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203