Latest qualcomm snapdragon high med 2016 Vulnerabilities

● CVE-2019-10511

Possibility of memory overflow while decoding GSNDCP compressed mode PDU in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, ...

Google Android

Qualcomm Apq8009

Google Android

Qualcomm Apq8017

Google Android

and 105 more

● CVE-2019-2288

Out of bound write in TZ while copying the secure dump structure on HLOS provided buffer as a part of memory dump in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer I...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 75 more

● CVE-2019-2320

Possible out of bounds write in a MT SMS/SS scenario due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Io...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 103 more

● CVE-2019-10493

Position determination accuracy may be degraded due to wrongly decoded information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdr...

Google Android

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Google Android

and 91 more

● CVE-2019-10485

Infinite loop while decoding compressed data can lead to overrun condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile...

Google Android

Qualcomm Apq8009

Google Android

Qualcomm Apq8017

Google Android

and 105 more

● CVE-2019-2337

While Skipping unknown IES, EMM is reading the buffer even if the no of bytes to read are more than message length which may cause device to shutdown in Snapdragon Auto, Snapdragon Compute, Snapdragon...

Google Android

Qualcomm Apq8053 Firmware

Qualcomm Apq8053

Qualcomm Apq8096au Firmware

Qualcomm Apq8096au

Qualcomm Apq8098 Firmware

and 91 more

● CVE-2019-2321

Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer E...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 95 more

● CVE-2019-2318

Non Secure Kernel can cause Trustzone to do an arbitrary memory read which will result into DOS in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra...

Google Android

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

Qualcomm Apq8053

Qualcomm Apq8096 Firmware

and 33 more

● CVE-2019-2335

While processing Attach Reject message, Valid exit condition is not met resulting into an infinite loop in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 101 more

● CVE-2018-13916

Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna...

Google Android

Qualcomm Apq8009

Google Android

Qualcomm Apq8017

Google Android

and 105 more

● CVE-2019-2303

SNDCP module may access array out side its boundary when it receives malformed XID message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, ...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 105 more

● CVE-2019-2295

Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon I...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 59 more

● CVE-2019-2271

Buffer over read can happen while parsing downlink session management OTA messages if network sends un-intended values in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Indus...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 105 more

● CVE-2019-2315

While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 81 more

● CVE-2019-2289

Lack of integrity check allows MODEM to accept any NAS messages which can result into authentication bypass of NAS in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industria...

Google Android

Qualcomm Apq8009 Firmware

Qualcomm Apq8009

Qualcomm Apq8017 Firmware

Qualcomm Apq8017

Qualcomm Apq8053 Firmware

and 105 more

● CVE-2019-10504

Firmware not able to send EXT scan response to host within 1 sec due to resource consumption issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

Google Android

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Msm8909w Firmware

and 49 more

● CVE-2019-2246

Thread start can cause invalid memory writes to arbitrary memory location since the argument is passed by user to kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con...

Google Android

Qualcomm Mdm9205 Firmware

Qualcomm Mdm9205

Qualcomm Mdm9640 Firmware

Qualcomm Mdm9640

Qualcomm Msm8996au Firmware

and 61 more

● CVE-2019-10496

Lack of checking a variable received from driver and populating in Firmware data structure leads to buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer...

Google Android

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qcs605 Firmware

and 67 more

● CVE-2019-2275

While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Sn...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9205 Firmware

Qualcomm Mdm9205

Qualcomm Mdm9206 Firmware

and 81 more

● CVE-2019-2285

Out of bound write issue is observed while giving information about properties that have been set so far for playing video in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C...

Google Android

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qcs605 Firmware

and 67 more

● CVE-2019-2258

Improper validation of array index causes OOB write and then leads to memory corruption in MMCP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon I...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Mdm9615 Firmware

and 95 more

● CVE-2019-2249

Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...

Google Android

Qualcomm Ipq8074 Firmware

Qualcomm Ipq8074

Qualcomm Mdm9205 Firmware

Qualcomm Mdm9205

Qualcomm Mdm9650 Firmware

and 49 more

● CVE-2019-10495

Arbitrary buffer write issue while processing sequence header during HEVC or AVC encoding. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industri...

Google Android

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qcs605 Firmware

and 67 more

● CVE-2019-2252

Classic buffer overflow vulnerability while playing the specific video whose Decode picture buffer size is more than 16 in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons...

Google Android

Qualcomm Mdm9650 Firmware

Qualcomm Mdm9650

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

and 67 more

● CVE-2019-10509

Device record of the pairing device used after free during ACL disconnection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr...

Google Android

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qca6574au Firmware

and 59 more

● CVE-2019-2294

Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivit...

Google Android

Qualcomm Mdm9205 Firmware

Qualcomm Mdm9205

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 89 more

● CVE-2019-2343

Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon ...

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qcs605 Firmware

Qualcomm Qcs605

and 66 more

● CVE-2019-2290

Multiple open and close from multiple threads will lead camera driver to access destroyed session data pointer in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industri...

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Mdm9640 Firmware

Qualcomm Mdm9640

and 50 more

● CVE-2019-2273

IOMMU page fault while playing h265 video file leads to denial of service issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna...

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Qcs605 Firmware

Qualcomm Qcs605

Google Android

Qualcomm Qualcomm 215

and 54 more

● CVE-2019-2263

Access to freed memory can happen while reading from diag driver due to use after free issue in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

Qualcomm Ipq4019 Firmware

Qualcomm Ipq4019

Qualcomm Ipq8064 Firmware

Qualcomm Ipq8064

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

and 60 more

● CVE-2019-2279

Shared memory gets updated with invalid data and may lead to access beyond the allocated memory. in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Mdm9650 Firmware

and 71 more

● CVE-2019-2239

Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics C...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 95 more

● CVE-2019-2327

Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon ...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 83 more

● CVE-2019-2322

Buffer overflow can occur when playing specific clip which is non-standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 83 more

● CVE-2019-2334

Null pointer dereferencing can happen when playing the clip with wrong block group id in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdr...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 83 more

● CVE-2019-2254

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 97 more

● CVE-2019-2236

Null pointer dereference during secure application termination using specific application ids. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connecti...

Google Android

Qualcomm Ipq8074 Firmware

Qualcomm Ipq8074

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 71 more

● CVE-2019-2235

Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consum...

Google Android

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Mdm9650 Firmware

and 65 more

● CVE-2019-2260

A race condition occurs while processing perf-event which can lead to a use after free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon ...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 73 more

● CVE-2018-13924

Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer ...

Google Android

Qualcomm Ipq8074 Firmware

Qualcomm Ipq8074

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

and 107 more

● CVE-2018-13896

XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdrag...

Google Android

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Mdm9650 Firmware

and 67 more

● CVE-2019-2261

Unauthorized access from GPU subsystem to HLOS or other non secure subsystem memory can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu...

Google Android

Qualcomm Ipq8074 Firmware

Qualcomm Ipq8074

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

and 79 more

● CVE-2019-2259

Resource allocation error while playing the video whose dimensions are more than supported dimension in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago...

Google Android

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qcs605 Firmware

and 65 more

● CVE-2018-13909

Metadata verification and partial hash system calls by bootloader may corrupt parallel hashing state in progress resulting in unexpected behavior in Snapdragon Auto, Snapdragon Compute, Snapdragon Con...

Google Android

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9607

Qualcomm Mdm9650 Firmware

and 55 more

● CVE-2018-5913

A non-time constant function memcmp is used which creates a side channel that could leak information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Co...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 97 more

● CVE-2019-2256

An unprivileged user can craft a bitstream such that the payload encoded in the bitstream gains code execution in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT,...

Google Android

Qualcomm Mdm9650 Firmware

Qualcomm Mdm9650

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

and 65 more

● CVE-2018-13910

Out-of-Bounds access in TZ due to invalid index calculated to check against DDR in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snap...

Google Android

Qualcomm Ipq8074 Firmware

Qualcomm Ipq8074

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 45 more

● CVE-2018-13911

Out of bounds memory read and access may lead to unexpected behavior in GNSS XTRA Parser in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Sna...

Google Android

Qualcomm Mdm9150 Firmware

Qualcomm Mdm9150

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9206

Qualcomm Mdm9607 Firmware

and 87 more

● CVE-2018-13907

While deserializing any key blob during key operations, buffer overflow could occur, exposing partial key information if any key operations are invoked in Snapdragon Auto, Snapdragon Compute, Snapdrag...

Google Android

Qualcomm Pq4019 Firmware

Qualcomm Pq4019

Qualcomm Ipq8074 Firmware

Qualcomm Ipq8074

Qualcomm Mdm9150 Firmware

and 99 more

● CVE-2019-2255

Google Android

Qualcomm Msm8909w Firmware

Qualcomm Msm8909w

Qualcomm Msm8996au Firmware

Qualcomm Msm8996au

Qualcomm Qcs605 Firmware

and 65 more

Latest qualcomm snapdragon high med 2016 Vulnerabilities

Company

Resources

Contact