CVE-2018-13902 | ByteOS Network

Vulnerability Details :

CVE-2018-13902

Assigner-qualcomm

Assigner Org ID-2cfc7d3e-20d3-47ac-8db7-1b7285aff15f

Published At-14 Jun, 2019 | 17:02

Updated At-05 Aug, 2024 | 09:14

Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:qualcomm

Assigner Org ID:2cfc7d3e-20d3-47ac-8db7-1b7285aff15f

Published At:14 Jun, 2019 | 17:02

Updated At:05 Aug, 2024 | 09:14

▼CVE Numbering Authority (CNA)

Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

Affected Products

Vendor

Qualcomm Technologies, Inc.

Product

Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Versions

Affected

MDM9150, MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

Problem Types

Type	CWE ID	Description
text	N/A	Improper Validation of Array Index in GNSS XTRA Parser

Type: text

CWE ID: N/A

Description: Improper Validation of Array Index in GNSS XTRA Parser

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins	x_refsource_CONFIRM

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins

Resource:

x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins	x_refsource_CONFIRM x_transferred

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins

Resource:

x_refsource_CONFIRM

x_transferred

▼National Vulnerability Database (NVD)

Source:product-security@qualcomm.com

Published At:14 Jun, 2019 | 17:29

Updated At:17 Jun, 2019 | 15:51

Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P

Type: Primary

Version: 3.0

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 5.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:N/C:N/I:N/A:P

CPE Matches

Qualcomm Technologies, Inc.

>>mdm9150_firmware>>-

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9206_firmware>>-

cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9607_firmware>>-

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9615_firmware>>-

cpe:2.3:o:qualcomm:mdm9615_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9615:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9635m_firmware>>-

cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9640_firmware>>-

cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9650_firmware>>-

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9655_firmware>>-

cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8909w_firmware>>-

cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8996au_firmware>>-

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>qcs605_firmware>>-

cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>qc_215_firmware>>-

cpe:2.3:o:qualcomm:qc_215_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:qc_215:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_210_firmware>>-

cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_212_firmware>>-

cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_205_firmware>>-

cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_425_firmware>>-

cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_427_firmware>>-

cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_430_firmware>>-

cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_435_firmware>>-

cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_439_firmware>>-

cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_429_firmware>>-

cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_450_firmware>>-

cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_625_firmware>>-

cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_632_firmware>>-

cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sd_636_firmware>>-

cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-129	Primary	nvd@nist.gov

CWE ID: CWE-129

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.qualcomm.com/company/product-security/bulletins	product-security@qualcomm.com	Vendor Advisory

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins

Source: product-security@qualcomm.com

Resource:

Vendor Advisory

Similar CVEs

221Records found

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.36% / 57.13%

||

7 Day CHG~0.00%

Published-09 Jun, 2021 | 06:20

Updated-04 Aug, 2024 | 11:28

Possible buffer overflow while updating ikev2 parameters for delete payloads received during informational exchange due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile

Vendor-Qualcomm Technologies, Inc.

Product-qca9377_firmware wcn3991_firmware wsa8830 sd678 sm6250p_firmware qcs610 qca6431_firmware csrb31024 wcd9360_firmware qcs4290 wcn3950_firmware sc8180x\+sdx55 sd765g_firmware qca6420_firmware qca6595au_firmware qca6390_firmware msm8917 sd690_5g sd730_firmware wcd9370 sd_675_firmware sd675_firmware qcs6125_firmware qca6426 qca6584au_firmware wcn3990_firmware qca9377 sa415m wcn3998 sd_8cx_firmware wcd9371_firmware sdxr2_5g_firmware wcd9385_firmware wcd9326_firmware sd720g wcn3615_firmware wcn3950 whs9410 wcn3660b sd450_firmware sa8155 qca6574au_firmware sdx55_firmware wcn3680b_firmware qca6595au wcd9375_firmware wcn3615 wcn3998_firmware sm7250p_firmware qca6420 qca6436_firmware apq8053_firmware wcd9360 qca6564au_firmware qca6584au whs9410_firmware sa515m_firmware sdxr2_5g qcs6125 sa8155_firmware msm8976sg sa415m_firmware qca6430 wcn3988_firmware qca6421 sm6250 wcd9340 apq8017_firmware wsa8810_firmware sd765g sd765_firmware qca6436 wcd9326 wcd9335 wcn6851 qca6174a_firmware qcs4290_firmware wcd9385 wcd9341 qca6431 qca6696_firmware wcd9371 sd750g sd870_firmware qca6390 wcd9375 sd_8cx aqt1000 msm8976 sd750g_firmware sc8180x\+sdx55_firmware sm6250_firmware msm8953_firmware wcn3910_firmware wsa8830_firmware msm8917_firmware sd855_firmware sd865_5g_firmware wcn3988 sd888_5g_firmware wcn6850_firmware wsa8815_firmware wsa8835_firmware apq8017 sd450 qcm6125_firmware wcn3991 wcd9380_firmware wcn3990 sd_675 sd865_5g qca6564au sdx24 sdx55m_firmware wcn6856_firmware msm8940_firmware msm8976_firmware sd670_firmware wsa8835 sd665_firmware wcd9380 sd888_5g sm6250p qcs410 qca6574a sd690_5g_firmware sdx50m_firmware wcn6855_firmware qca9379_firmware qca6174a sdx24_firmware qca6430_firmware wcd9335_firmware wcn3980 sa515m wcd9340_firmware sd855 wsa8815 wcn6850 sd665 wcn3910 sd_8c_firmware sd765 qca6426_firmware wcn3660b_firmware qca6574a_firmware sd768g_firmware wcn3980_firmware sd730 qca6391 sdx55m qca6421_firmware aqt1000_firmware msm8920 msm8953 sd678_firmware qcm4290 csrb31024_firmware sdx50m sd480_firmware wcn6851_firmware msm8920_firmware qca6574au sa8155p_firmware sd670 msm8976sg_firmware wcd9341_firmware qcm6125 qcm4290_firmware sd480 sd870 wcn6855 wsa8810 qcs610_firmware wcn6856 sd_8c wcn3680b sd768g qca6696 qca6391_firmware sd845_firmware wcd9370_firmware sdx55 msm8940 apq8053 sa8155p sd675 sd845 sm7250p sd720g_firmware qcs410_firmware qca9379 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.8||MEDIUM

EPSS-0.04% / 9.59%

||

7 Day CHG~0.00%

Published-17 Mar, 2021 | 06:01

Updated-04 Aug, 2024 | 11:28

Buffer overflow occurs when trying to convert ASCII string to Unicode string if the actual size is more than required in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Vendor-Qualcomm Technologies, Inc.

Product-qfs2580 qca9377_firmware qpm5679_firmware sm6250p_firmware qca8337 qdm5579 qfs2608_firmware qfs2530 qpm8870_firmware qln1030 pm6125 qat5522_firmware wcn3950_firmware pm8150a qdm5670 qca6595au_firmware qpm5541_firmware qpa5581_firmware sa6155 pm7150l qpa8821 pm8998_firmware wtr5975_firmware qcs6125_firmware pm456_firmware qpa5580_firmware sa415m wcn3998 wcd9371_firmware wcn3950 sm4125 sd720g qsw8573_firmware qsw8574_firmware sd460_firmware smb2351_firmware sd6905g qpa4360_firmware wcn3998_firmware pm855p qca6420 pm6150a qpm6670_firmware pm660_firmware pm8150b sa8155_firmware qca6430 qat3522 pmr735a wcd9340 sdm830_firmware sd765g sdr660 qfs2630_firmware sdr865 mdm9250_firmware qdm5620_firmware smr545 qca6696_firmware qln5020 wcd9371 sd870_firmware pmm855au_firmware sa8150p pm6350 qdm5621 qtc800s qat3514_firmware sd660 pm640p_firmware sd660_firmware qat5516_firmware pm6150l sd8885g pm855l_firmware qtc410s wcn3991 qpa8801 pm8150l_firmware qat5533_firmware sdx55m_firmware sdxr25g qpa8673_firmware pm6150 smb1354_firmware sd670_firmware qca6574 qfs2630 qpa8842 sdr052_firmware wcd9380 qln4640 qcs410 qpm5579_firmware smb1380_firmware pmk8350_firmware smb1381 pm855p_firmware pm7250 qpa8803 sdx24_firmware sdxr25g_firmware qdm2301 wcd9340_firmware wsa8815 wcn6850 qdm5621_firmware qdm2301_firmware qpm6375 sd835 wcn3980_firmware sd730 pm660l_firmware pm6250_firmware wcn6740_firmware pm8008 pm8350b_firmware qtm525_firmware pme605_firmware pme605 sd678_firmware qpm5621_firmware qln1021aq_firmware qcs603 rsw8577 qpa6560_firmware qpa8802_firmware qln4640_firmware qpm5621 qpm6582 sd670 pm8009_firmware qfs2580_firmware qcm4290_firmware pm8150l pmi8998_firmware qcs610_firmware sa6145p pm660a_firmware pm4250 ar8031 qpm5577 wtr2965 sdm630_firmware sa2150p qca6391_firmware pm8150 wcd9370_firmware qat3516_firmware sdx55 csra6640 pm8350bhs qat3555_firmware qpa8803_firmware pm855b smb2351 qln1031 qpm5870 wsa8830 pm660 qet6110_firmware qdm5579_firmware qpm6325 pm6125_firmware qbt1500 qpa5581 csrb31024 pmx24_firmware fsm10055_firmware qbt1500_firmware qpm5870_firmware qcs4290 qet6100 pmm855au mdm9250 qca6420_firmware smb1394_firmware apq8009_firmware smb1396 pm7150a sd675_firmware pm8350 qca6564 qpa4361_firmware pm8350c_firmware qpa5461_firmware qca6426 wcn3990_firmware qca9377 qpm5641 wcd9385_firmware qdm5650_firmware qpa4340_firmware wcd9326_firmware pm7250_firmware sdr845_firmware qdm5620 qln1021aq smb1380 pmk8002_firmware qsw6310_firmware sa8155 qln1031_firmware qdm4650_firmware sdx55_firmware pmm6155au_firmware qat5533 sm7250p_firmware qsm7250_firmware qpm6670 pm7150l_firmware qca6584au qpm4641 qat5515_firmware pm855 qpm8830_firmware pm8250 sdm630 mdm9655_firmware qdm4643 qfs2530_firmware sa415m_firmware pmx55 qpm4641_firmware wcn3988_firmware pm8150c_firmware qca6421 qdm3301 qpa8842_firmware qat3519_firmware sa8195p sdr735_firmware qpm5677 qat5515 qat3514 wcd9326 wcd9335 pm6350_firmware pm8004_firmware sdr8150_firmware qcs4290_firmware qtc800h_firmware pmk7350_firmware qpm5620 qpm4630 qca6390 wcd9375 sd750g_firmware aqt1000 sm6250_firmware pmm8195au qln4642 qpm5677_firmware wsa8815_firmware wtr3925_firmware smr525_firmware pm8998 pmk7350 qpm8820_firmware qln1020_firmware qpm6621_firmware pm670a_firmware qcm6125_firmware pmx55_firmware qbt1000_firmware qca6595 pm8150_firmware smb1398_firmware qpm8830 qat5522 pm8150c pmr735b sd665_firmware qpa4360 pmk8003_firmware qpa4361 qpm4640_firmware qpm5577_firmware qdm5679_firmware pm8350c smr525 qca6310_firmware pm6150l_firmware pmr525 pm8150a_firmware qca6574_firmware qln1036aq_firmware sd665 pm6150a_firmware pm6150_firmware sd765 qca6574a_firmware qpm4630_firmware qat3555 apq8009 qpa5461 sd8c_firmware wtr2965_firmware pm670_firmware csrb31024_firmware qfs2608 sd480_firmware qln1036aq qtc801s qpm5641_firmware sd710 pm8008_firmware qpm6621 pmr735a_firmware pmx50 qca6564_firmware sdr8250 sd768g qln1030_firmware wcn6740 pm8004 pm640l pmk8002 sd845 sd455_firmware sdm830 qcs410_firmware qpa5580 qpm5579 fsm10055 sa6150p_firmware qcs610 qpm5620_firmware qdm2307 qca6431_firmware qpa8802 wcd9360_firmware qpm6585_firmware qat3519 qbt2000_firmware qtc800h sa8150p_firmware qcs2290 sdr8250_firmware qca6335 csra6620_firmware qcs605_firmware qln1020 smr546_firmware qdm5671 csra6640_firmware pmc1000h qpm4650_firmware qat3518 sd8c sdr425_firmware smr526_firmware qpa5460 pm640a_firmware wgr7640_firmware qdm2305_firmware qpm5670_firmware sd710_firmware qdm5652 qca6574au_firmware qpm8870 wcd9375_firmware qpm5679 qbt2000 sa6155_firmware wcd9360 pmx50_firmware qpa8675_firmware sdr735g qpa5460_firmware wcn3999 qdm3301_firmware qsm7250 qcs6125 sd662_firmware qcs405 rsw8577_firmware qdm2308_firmware fsm10056_firmware qca6436 wcn6851 sa6155p qcs603_firmware qpa6560 sdr675_firmware wcd9341 sm7350_firmware qdm4643_firmware mdm9655 qca6431 qet4100_firmware sd750g qdm3302 wcn3910_firmware qpm5657 qpm5875_firmware wsa8830_firmware sd855_firmware qdm5650 wcn3988 wtr3925 sdr052 sa8195p_firmware smb1390 qet4100 qpa8686_firmware qpm6585 qca8337_firmware wcd9380_firmware smb1355 qln4650 qtc800t_firmware sdr735g_firmware pm8350bhs_firmware wgr7640 qat5568 qet5100 qdm5671_firmware qpa8801_firmware qca6564au qtm527_firmware sd636 wcn6856_firmware pm8005_firmware qet4101_firmware pm7250b qln4642_firmware smb1355_firmware pm7250b_firmware pmd9655_firmware smb1351_firmware qet4200aq_firmware sdx50m_firmware sdr735 smb1395 pm660l ar8151 smr526 wtr5975 qca6430_firmware pmk8003 qtc801s_firmware wcd9335_firmware qat3522_firmware wcn3980 pm7350c_firmware qca6335_firmware qsw8573 qcs605 qbt1000 wcn3910 qca6320 smb1394 qca6426_firmware pm8350_firmware pm8009 qpa8675 sdr051_firmware sdx55m pm670a qca6421_firmware qat3518_firmware qsw8574 pmi8998 sd6905g_firmware ar8031_firmware pm855l wcn6851_firmware qdm5670_firmware sd8655g pm7150a_firmware pm8150b_firmware smr545_firmware pmc1000h_firmware qca6564a_firmware qdm2310_firmware pm4250_firmware sd480 sd870 sd8885g_firmware pm670 qdm5677 pm8005 pm855_firmware qdm2302 pmm6155au sdxr1 pm855b_firmware qca6595_firmware qcs405_firmware qpm6582_firmware qpm6375_firmware pm640l_firmware qln4650_firmware qpm5875 qet5100m sa8155p sd675 qet4101 qat3516 pm670l qpm5658 ar8035_firmware qcm2290 qpm5658_firmware wcn3991_firmware qdm5652_firmware pmm8155au_firmware sd678 sdr051 qln5030 qcs2290_firmware pm4125 fsm10056 pmi632 qpa2625_firmware pm456 pm8350bh_firmware csra6620 pmr735b_firmware qet5100_firmware qpm4621 qet6100_firmware pm670l_firmware sdr660g sd455 sd765g_firmware qpa8686 qca6390_firmware sd730_firmware wcd9370 sdr425 pmr525_firmware qca6584au_firmware ar8151_firmware pmi632_firmware qpm5541 qat5516 sd662 qpa8821_firmware sdr660g_firmware pm8350bh pm3003a qca6320_firmware qca6595au wcn3999_firmware qca6436_firmware qtc800t sm7350 smb1354 qca6564au_firmware qdm2305 sa6155p_firmware qca6310 qpm8820 qpm2630 qln5020_firmware sa515m_firmware smb1398 sa6145p_firmware sdr675 sm6250 wsa8810_firmware sd765_firmware qdm5677_firmware qet4200aq qca6174a_firmware wcd9385 qpm6325_firmware qdm2302_firmware qat3550_firmware pmm8155au qln5040_firmware pm4125_firmware ar8035 qpa8673 qdm2310 qln5030_firmware smb1396_firmware wcn6850_firmware wsa8835_firmware qca6564a smr546 pmx24 qet6110 qln5040 qcm2290_firmware qpm8895 sdr845 qpm5670 wcn3990 qtm527 pmk8350 sdx24 qdm3302_firmware pm8350b qdm2307_firmware wsa8835 qpm5657_firmware sm6250p sdr660_firmware qca6574a pm8916_firmware smb1390_firmware qca6174a qpm4640 pm7350c qet5100m_firmware qpm4650 qtm525 sa515m wtr6955 sa2150p_firmware sd855 sm4125_firmware sd8cx wtr6955_firmware pm640p sd768g_firmware sdr865_firmware pm8250_firmware sd460 qca6391 sd8cx_firmware sdxr1_firmware smb1351 aqt1000_firmware qpm8895_firmware pm660a qpa4340 qcm4290 sdx50m pm640a sdr8150 pm8916 smb1395_firmware qdm4650 pmd9655 qca6574au sa8155p_firmware qsw6310 sd8655g_firmware wcd9341_firmware qcm6125 wsa8810 qtc410s_firmware qpm2630_firmware qat5568_firmware qdm2308 qat3550 wcn6856 qdm5679 sd835_firmware pm3003a_firmware qca6696 qtc800s_firmware smb1381_firmware sd845_firmware qpa2625 sa6150p pmm8195au_firmware sm7250p sd720g_firmware qpm4621_firmware sd636_firmware pm6250 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 3.03%

||

7 Day CHG~0.00%

Published-12 Jun, 2018 | 20:00

Updated-16 Sep, 2024 | 17:48

Buffer over flow can occur while processing a HTT_T2H_MSG_TYPE_TX_COMPL_IND message with an out-of-range num_msdus value in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.01%

||

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 11:28

u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-ipq5018_firmware kamorta_firmware qcm2150_firmware mdm9640_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm632 sdx24 qcs404_firmware mdm9650 sdm429 sm6150 msm8909w_firmware agatti_firmware msm8996au sdm429w_firmware qca6390_firmware apq8009_firmware sdm670 sxr2130 qcs605_firmware sc8180x ipq4019_firmware sdm670_firmware qcs404 sdx24_firmware ipq8074 sdm636 sda845_firmware ipq5018 sa415m bitra apq8098 ipq6018_firmware sa515m qcs605 bitra_firmware sdm429_firmware mdm9650_firmware msm8905_firmware sda660 sdx55_firmware ipq8064 sxr1130_firmware sxr1130 msm8909w apq8009 apq8053_firmware ipq8064_firmware sda845 agatti sa6155p_firmware msm8953 sdm636_firmware sdm845_firmware sa515m_firmware apq8098_firmware sdx20 qcm2150 sdm660 sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 qca9531 ipq8074_firmware sa8155p_firmware sdm710 mdm9607 apq8017_firmware sdm710_firmware sa6155p msm8905 ipq6018 sm8150_firmware sxr2130_firmware apq8096au qcs405_firmware sdm630_firmware sda660_firmware qca6390 ipq4019 sdx55 msm8953_firmware apq8053 saipan_firmware sm6150_firmware apq8096au_firmware sa8155p sm8250 sm8150 sdx20_firmware qca9531_firmware kamorta apq8017 saipan sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.05% / 16.49%

||

7 Day CHG~0.00%

Published-06 Feb, 2024 | 05:47

Updated-13 Jun, 2025 | 18:57

Improper Validation of Array Index in Display

Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE event trigger.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 8.43%

||

7 Day CHG~0.00%

Published-06 May, 2019 | 22:37

Updated-05 Aug, 2024 | 21:13

While iterating through the models contained in a fixed-size array in the actData structure, which also stores an incorrect number of models that is greater than the size of the array, a buffer overflow occurs in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835

Vendor-Qualcomm Technologies, Inc.

Product-sd_820a sd_425 sd_430_firmware mdm9607_firmware mdm9650 sd_650_firmware sd_625 sd_210 mdm9607 sd_820_firmware sd_820 sd_650 sd_450_firmware sd_617 sd_820a_firmware mdm9206 sd_652 sd_425_firmware sd_212_firmware sd_625_firmware sd_450 mdm9206_firmware sd_430 sd_835_firmware mdm9650_firmware sd_835 sd_205 sd_210_firmware sd_652_firmware sd_205_firmware sd_212 sd_617_firmware Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.25% / 48.30%

||

7 Day CHG~0.00%

Published-09 Sep, 2021 | 07:35

Updated-03 Aug, 2024 | 16:25

UE assertion is possible due to improper validation of invite message with SDP body in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

Vendor-Qualcomm Technologies, Inc.

Product-qca9377_firmware wcn3991_firmware sd678 sm6250p_firmware qcs610 csrb31024 wcd9360_firmware sd_636 qcs4290 wcn3950_firmware sc8180x\+sdx55 qca6420_firmware qca6595au_firmware qca6390_firmware qca6335 msm8917 sd730_firmware sd_455_firmware wcd9370 qcs605_firmware sd_675_firmware sd675_firmware qcs6125_firmware qca6584au_firmware sd632 qca9377 sa415m wcn3998 sd_8cx_firmware wcd9371_firmware whs9410 wcn3950 sd720g wcn3660b sd450_firmware sa8155 qca6574au_firmware sdx55_firmware qca6595au wcd9375_firmware wcn3998_firmware wcn3610_firmware qca6420 apq8053_firmware wcd9360 qca6564au_firmware qca6584au qca6310 whs9410_firmware sd429 qcs6125 sa8155_firmware sdm630 sa415m_firmware wcn3988_firmware qca6430 sd429_firmware sm6250 sd712_firmware wcd9340 apq8017_firmware qualcomm215_firmware qcs603_firmware qca6174a_firmware qcs4290_firmware wcn3660_firmware qca6696_firmware wcd9371 qca6390 wcd9375 sd_8cx aqt1000 wcn3910_firmware sc8180x\+sdx55_firmware sm6250_firmware msm8953_firmware sda429w msm8917_firmware sd855_firmware wcn3620_firmware sd712 wcn3988 wcn6850_firmware wcn3620 wsa8815_firmware apq8017 sd450 wcn3610 qcm6125_firmware wcn3991 sda429w_firmware wcd9380_firmware sd_675 sdm429w qca6564au sdx24 sdx55m_firmware msm8940_firmware sd670_firmware sd632_firmware sdm429w_firmware sd665_firmware wcd9380 sm6250p qualcomm215 qcs410 qca6574a sdx50m_firmware qca6174a sdx24_firmware qca6310_firmware qca6430_firmware qca6335_firmware qcs605 wcd9340_firmware sd855 wsa8815 wcn6850 sd665 wcn3910 sd_8c_firmware wcn3660b_firmware wcn3680 qca6574a_firmware sd850_firmware sd730 sdxr1_firmware sdx55m aqt1000_firmware msm8920 msm8953 sd678_firmware qcm4290 csrb31024_firmware sdx50m wcn3680_firmware qcs603 msm8920_firmware sd_455 qca6574au sa8155p_firmware sd_636_firmware sd670 qcm6125 qcm4290_firmware qcs610_firmware sd_8c sdxr1 qca6696 sdm630_firmware sd845_firmware wcd9370_firmware sdx55 msm8940 apq8053 sa8155p sd675 sd845 sd720g_firmware qcs410_firmware wcn3660 sd850 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.22% / 44.32%

||

7 Day CHG~0.00%

Published-18 Apr, 2018 | 14:00

Updated-16 Sep, 2024 | 23:26

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 835, and SDX20, while setting the offsets, time-services allows the user to set bases greater than valid base value which will lead to array index out-of-bound.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 3.37%

||

7 Day CHG~0.00%

Published-17 May, 2018 | 22:00

Updated-17 Sep, 2024 | 03:13

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, the camera application triggers "user-memory-access" issue as the Camera CPP module Linux driver directly accesses the application provided buffer, which resides in user space. An unchecked userspace value (ioctl_ptr->len) is used to copy contents to a kernel buffer which can lead to kernel buffer overflow.

Vendor-Qualcomm Technologies, Inc.Google LLC

Product-android Android for MSM, Firefox OS for MSM, QRD Android

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 3.99%

||

7 Day CHG~0.00%

Published-14 Jun, 2019 | 17:02

Updated-05 Aug, 2024 | 05:47

Out of bounds read occurs due to improper validation of array while processing VDEV stop response from WLAN firmware in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS405, QCS605, SD 210/SD 212/SD 205, SD 615/16/SD 415, SD 625, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 835, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_712 sd_855 sd_730_firmware mdm9640_firmware sd_820a sd_675 msm8996au_firmware sdx20 sd_415 sd_616 sd_670_firmware sdm660 sdx24 sdm630 mdm9607_firmware sd_615 mdm9650 sd_636 sd_650_firmware qcs405 sd_625 sd_615_firmware sd_710_firmware sd_210 mdm9607 msm8996au sd_636_firmware sd_650 sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_652 sd_730 sd_212_firmware sdx24_firmware sd_625_firmware sd_855_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware mdm9206_firmware qcs605 sd_670 sd_835_firmware mdm9650_firmware sd_710 sdx20_firmware sd_835 sd_205 sda660 sd_210_firmware sd_415_firmware sd_652_firmware sd_616_firmware sd_205_firmware sdm660_firmware sd_212 mdm9640 Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.5||HIGH

EPSS-0.22% / 45.20%

||

7 Day CHG~0.00%

Published-16 Sep, 2022 | 05:25

Updated-03 Aug, 2024 | 04:42

Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Vendor-Qualcomm Technologies, Inc.

Product-sd_8cx_gen3_firmware mdm9640_firmware sm6250p_firmware qcs610 qca8337 qca6431_firmware wcd9360_firmware sdx65 wcn3950_firmware sc8180x\+sdx55 qcs2290 qca6595au_firmware sa6155 qca6335 csra6620_firmware qcs605_firmware sd_675_firmware csra6640_firmware qcs6125_firmware sa415m wcn3998 wcd9371_firmware sd_8cx_gen2_firmware sm4125 mdm9628 sd720g wcn3950 sd_8_gen1_5g_firmware qsm8350_firmware sd710_firmware qsm8350 sd460_firmware sm7315_firmware wcn7850 qca6574au_firmware wcd9375_firmware qca8081_firmware sa6155_firmware wcn3998_firmware qca6420 wcd9360 sm7450_firmware sd680_firmware wcn3999 sd_8cx_gen2 qrb5165_firmware qrb5165m_firmware qcs6125 sa8155_firmware sd662_firmware qcs405 qca6430 wcd9340 sd765g qca6436 sd680 wcn6851 sa6155p qcs603_firmware wcn7851_firmware mdm9250_firmware wcd9341 qca6431 qca6696_firmware wcd9371 sd750g sd870_firmware qca1062 wcn3910_firmware sd_8cx wsa8830_firmware sd855_firmware sd660 sd865_5g_firmware sd712 wcn3988 sd660_firmware wcn7850_firmware sa8195p_firmware sm8475 qcn7606_firmware wcn6750_firmware mdm9640 wcn3991 qca8337_firmware wcd9380_firmware msm8996au_firmware qca6564au sdx55m_firmware wcn6856_firmware sd670_firmware qca6574 wcd9380 qcs410 sd690_5g_firmware sdx50m_firmware qca9379_firmware qca6430_firmware wcd9335_firmware wcn3980 qca6335_firmware qcs605 wcd9340_firmware wsa8815 wcn6850 sd7c wcn3910 qca6320 mdm9650_firmware qca6426_firmware sd695 sd835 wcn3980_firmware sd730 sdx55m qca6421_firmware wcn6740_firmware sd678_firmware ar8031_firmware qrb5165 wcn6851_firmware qcs603 sd_636_firmware sd670 qca6564a_firmware qcm4290_firmware sd480 sd870 wcn6855 qcn7605_firmware wsa8832 qcs610_firmware sa6145p sd695_firmware sdxr1 apq8096au ar8031 qca6595_firmware qcs405_firmware sdm630_firmware sd820_firmware qca6391_firmware sd780g_firmware wcd9370_firmware sdx55 sd888_firmware sa8155p csra6640 sd675 qca9379 ar8035_firmware qcm2290 qcn7606 wcn3991_firmware wsa8830 sd678 qca1062_firmware qcs2290_firmware sd7c_firmware csrb31024 mdm9628_firmware mdm9650 sd_636 csra6620 qcs4290 mdm9250 sd765g_firmware qca6420_firmware qca6390_firmware sd690_5g sd730_firmware wcd9370 sd675_firmware qca6564 qca6426 wcn3990_firmware qrb5165n_firmware sd_8cx_firmware qcn7605 sdxr2_5g_firmware wcd9385_firmware wcd9326_firmware sd662 qca1064 sa8155 qca6320_firmware sdx55_firmware qca6595au wcn3999_firmware sm7250p_firmware qca6436_firmware qrb5165n qca6564au_firmware sd778g sa6155p_firmware qca6310 sa515m_firmware qcs6490 wcn7851 sdxr2_5g sdm630 mdm9607_firmware sa415m_firmware wcn3988_firmware sa6145p_firmware qca6421 sd712_firmware sd778g_firmware sm6250 sa8195p wsa8810_firmware qca6694 sd765_firmware wcd9326 wcd9335 qca8081 qca6174a_firmware qcs4290_firmware wcd9385 qcs6490_firmware sd_8cx_gen3 ar8035 qca6390 sd750g_firmware aqt1000 qca6694_firmware wcd9375 sc8180x\+sdx55_firmware sm6250_firmware sd820 qcm6490 sd888_5g_firmware wcn6850_firmware wsa8815_firmware wsa8835_firmware sm7450 qca6564a qcm6125_firmware qcm2290_firmware wcn3990 sd_675 sd780g sd865_5g qca6595 sd888 wsa8835 msm8996au sd665_firmware sd888_5g sm6250p qca6574a wcn6855_firmware qca6174a sm7325p qca6310_firmware wcn6750 sa515m qca6574_firmware sd855 sm4125_firmware sm7325p_firmware sd665 qca6175a sd765 qca6574a_firmware sd768g_firmware qrb5165m sd850_firmware sm7315 sd460 qca6391 sdxr1_firmware aqt1000_firmware sdx65_firmware mdm9626 qcm4290 csrb31024_firmware qcm6490_firmware sdx50m wsa8832_firmware sd480_firmware mdm9626_firmware qca6574au sa8155p_firmware sd710 mdm9607 wcd9341_firmware qcm6125 wsa8810 wcn6856 sd835_firmware qca6564_firmware sd768g qca1064_firmware wcn6740 qca6696 sd845_firmware apq8096au_firmware sd845 sm7250p sd720g_firmware qcs410_firmware qca6175a_firmware sd850 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.06% / 18.13%

||

7 Day CHG~0.00%

Published-13 Dec, 2022 | 00:00

Updated-22 Apr, 2025 | 16:15

Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Vendor-Qualcomm Technologies, Inc.

Product-wcd9380_firmware wcn3615_firmware msm8996au sd429_firmware qca6595au_firmware qualcomm215_firmware sd730 qca6310 qsw8573 apq8009 mdm9607 qca6696 qca6421 wcn7850 mdm9205_firmware qca6564au msm8937 sdx24 wcn3660b sd632_firmware mdm8207_firmware sd720g qca6426_firmware sd710_firmware sd460 sd205_firmware msm8996au_firmware mdm9630 apq8056 msm8940 sdx24_firmware wsa8830 msm8920_firmware wsa8815 wcn3680b qca6430 wcn3620_firmware sd855 qcs6490_firmware wcd9340 sdx55_firmware sdxr2_5g_firmware apq8037 msm8976sg_firmware sd_8cx_gen2_firmware sc8180x\+sdx55_firmware mdm9207 sd712 mdm9650 sd765g_firmware qca6574a qca4004_firmware msm8108_firmware sd865_5g_firmware wcd9306_firmware apq8017_firmware qcm6125_firmware sdm429w_firmware sd835_firmware wcn6750 sm7325p msm8917_firmware sd_636_firmware sd695_firmware qcc5100 sd_675 qca6335 sd625_firmware msm8108 qcs405 qca6431_firmware msm8208 csra6640 sd480_firmware qet4101 qca6430_firmware qca8081 sm7315_firmware sm7325p_firmware qca6584au apq8009w sd870 mdm9150 qca9367 qca6390_firmware qcn9024_firmware sc8180x\+sdx55 wcn6855 qca6584_firmware qcx315_firmware wcn3910 sd870_firmware qcm6490_firmware sm6250 sdm630_firmware qca6431 qca6595au wcd9370 sd821_firmware qcs4290_firmware sd888_firmware wcn3980 sd439_firmware sm7315 sd765_firmware sd720g_firmware sd765g sd670 mdm9150_firmware sdx55m msm8208_firmware msm8917 sd450 wcn6850_firmware wcn3660 sd_455 sm6250p wsa8810_firmware wsa8815_firmware wcn3991_firmware sd625 sd850_firmware wcn6740 msm8608_firmware qca6436 msm8952_firmware wsa8810 sdxr1 msm8909w sdm630 sw5100p_firmware aqt1000_firmware qca4004 wsa8835_firmware wcd9335_firmware sm7250p_firmware apq8009_firmware qca6391 qcn9024 wcn3998_firmware csra6620 mdm9330_firmware wcn6851 sd778g_firmware wcd9370_firmware sd675 qca6420_firmware sd439 wcn3660_firmware sdx57m qcx315 qcc5100_firmware msm8940_firmware sd210_firmware qcm6125 fsm10055_firmware apq8052_firmware fsm10055 sdx12 sd660 csrb31024_firmware sdm429w sdx20 qcs610 qualcomm215 apq8052 qca6391_firmware sd205 wcd9326_firmware sm7250p csra6620_firmware wcn3610 sdx20_firmware wcn3910_firmware msm8209 apq8017 wcd9375 sd750g_firmware msm8976_firmware qca6696_firmware sm6250p_firmware sd865_5g qca9377 wcn3990_firmware mdm9230_firmware wcn3950_firmware wcn3988 sd778g wcd9371_firmware wcn3615 msm8976 sd750g sd768g_firmware qcs605 msm8952 sd712_firmware wcn7851 qca6310_firmware sd710 mdm9640_firmware qca6436_firmware qca9367_firmware sd_636 wcd9341_firmware sd821 sd632 wcd9340_firmware mdm9330 sd850 apq8037_firmware sd_675_firmware qca6174a_firmware qca6564a_firmware sd855_firmware sd662_firmware wcd9371 mdm9650_firmware sdx50m qcs405_firmware qcn6024_firmware qcs6490 sdx55 sd460_firmware sd_455_firmware msm8956 mdm9628 wcn3610_firmware qcm4290_firmware msm8976sg sd450_firmware sd820 wcn3660b_firmware sm4375 msm8909w_firmware qet4101_firmware sd665_firmware wcd9360_firmware sdw2500 sdw2500_firmware qsw8573_firmware sd626 sd768g wcn6740_firmware wcn6856 sd626_firmware apq8009w_firmware sda429w_firmware sdx50m_firmware qca6390 sd480 wcd9330 wcn7851_firmware sw5100 wcn6850 sa415m wcn3950 qcs603_firmware msm8608 qca6320_firmware qca6584au_firmware qcm6490 qcn6024 qca6174a wcd9335 sd7c_firmware sd670_firmware wcn3680b_firmware sd835 qca6421_firmware qca6574au_firmware sd662 mdm9250_firmware qcs610_firmware mdm9205 msm8956_firmware mdm9207_firmware qca6174 qcm2290_firmware wcd9380 mdm9630_firmware qcm4290 wcn3680 mdm9628_firmware sd660_firmware sd730_firmware sd695 qca6174_firmware wcd9375_firmware sd888 ar8035_firmware wcn6856_firmware aqt1000 mdm9230 qcs603 sdx12_firmware ar8035 wcn6855_firmware mdm8207 wcd9360 qca6420 sd780g_firmware wcn3680_firmware qcm2290 sdx65_firmware mdm9250 sa515m sd845_firmware mdm9206 sdxr1_firmware sa515m_firmware mdm9607_firmware wcn3990 apq8076 sd429 apq8076_firmware sd690_5g qca8081_firmware msm8920 wsa8835 wcn3998 wcd9306 apq8056_firmware qca8337_firmware mdm9206_firmware qcs2290 sd820_firmware sd7c wcd9385 sd678 qca6574au wcn7850_firmware sdx65 wcd9385_firmware mdm9640 apq8096au wcn6750_firmware qcs410_firmware sd210 sd680 sd888_5g sd678_firmware qca9379 qcs6125 sm4375_firmware wcn3991 qca6574 csra6640_firmware qca6574_firmware sa415m_firmware qca6564a sd675_firmware qca6574a_firmware sd665 sda429w sd888_5g_firmware wsa8830_firmware qca6320 qca8337 sd_8_gen1_5g_firmware sm6250_firmware sdxr2_5g wcd9341 wcn3980_firmware qcs2290_firmware wcn6851_firmware wcd9326 sd680_firmware qca9379_firmware msm8937_firmware qca9377_firmware apq8096au_firmware sw5100_firmware qca6584 sd780g qca6564au_firmware csrb31024 qca6426 qca6335_firmware sdx55m_firmware qcs6125_firmware sdx57m_firmware sd690_5g_firmware sm8475 wcn3620 sd765 qcs605_firmware wcd9330_firmware wcn3988_firmware qcs4290 msm8209_firmware sw5100p sd_8cx_gen2 sd845 qcs410 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.27% / 49.95%

||

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check to validate the index length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in Agatti, APQ8053, APQ8096AU, APQ8098, Bitra, Kamorta, MSM8905, MSM8909W, MSM8917, MSM8940, MSM8953, MSM8996AU, Nicobar, QCA6390, QCA6574AU, QCM2150, QCS605, QM215, Rennell, SA6155P, SA8155P, Saipan, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-kamorta_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware agatti_firmware msm8996au sdm429w_firmware sm7150 qca6390_firmware msm8917 sdm670 sxr2130 qcs605_firmware sdm670_firmware sdm636 bitra apq8098 qcs605 bitra_firmware sdm429_firmware msm8905_firmware qca6574au_firmware sda660 sxr1130_firmware sxr1130 msm8909w apq8053_firmware agatti nicobar sa6155p_firmware msm8953 sdm450 sdm636_firmware apq8098_firmware qcm2150 sdm660 sdm630 sm8250_firmware qca6574au sa8155p_firmware qm215 sdm710 sdm710_firmware sa6155p msm8905 sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qca6390 qm215_firmware msm8953_firmware msm8940 saipan_firmware sm6150_firmware apq8053 msm8917_firmware apq8096au_firmware sa8155p sm8150 sm8250 kamorta saipan nicobar_firmware sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.01%

||

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

Possibility of out of bound access while processing the responses from video firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8917, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, Saipan, SC8180X, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware kamorta_firmware qcm2150_firmware mdm9640_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sa415m apq8098 mdm9206_firmware qcs605 sdm429_firmware mdm9650_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 apq8053_firmware nicobar sa6155p_firmware msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 sdm660 sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 sdm710 qm215 mdm9607 sdm710_firmware sa6155p mdm9150 mdm9207c_firmware msm8996_firmware mdm9207c sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8953_firmware apq8053 saipan_firmware sm6150_firmware apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware kamorta msm8996 saipan nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.32% / 54.17%

||

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:44

Possible null-pointer dereference can occur while parsing mp4 clip with corrupted sample table atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909W, MSM8917, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA6574AU, QCS405, QCS605, QM215, Rennell, Saipan, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 sdm429 sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sxr2130 qcs605_firmware mdm9206 sdm636 apq8098 mdm9206_firmware qcs605 sdm429_firmware msm8905_firmware qca6574au_firmware sda660 msm8909w apq8009 apq8053_firmware msm8953 sdm450 sdm636_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 sdm630 mdm9607_firmware sm8250_firmware qcs405 qca6574au qm215 mdm9607 apq8017_firmware mdm9207c_firmware msm8996_firmware msm8905 mdm9207c sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qm215_firmware msm8953_firmware apq8053 apq8096au_firmware saipan_firmware sm6150_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware apq8017 msm8996 saipan sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-476

NULL Pointer Dereference

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.73%

||

7 Day CHG~0.00%

Published-12 Nov, 2020 | 10:00

Updated-04 Aug, 2024 | 07:37

u'Incorrect validation of ring context fetched from host memory can lead to memory overflow' in Snapdragon Compute, Snapdragon Mobile in QSM8350, SC7180, SDX55, SDX55M, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR2130, SXR2130P

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.33% / 55.32%

||

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

Array out of bound may occur while playing mp3 file as no check is there on offset if it is greater than the buffer allocated or not in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909W, MSM8917, MSM8953, MSM8996AU, MSM8998, QCS405, QCS605, QM215, Rennell, Saipan, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-kamorta_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 sdm429 sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware mdm9206 sdm670_firmware sdm636 apq8098 mdm9206_firmware qcs605 sdm429_firmware msm8905_firmware sda660 msm8909w apq8009 apq8053_firmware msm8953 sdm450 sdm636_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 sdm630 mdm9607_firmware sm8250_firmware qcs405 sdm710 qm215 mdm9607 sdm710_firmware mdm9207c_firmware msm8905 mdm9207c sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qm215_firmware msm8953_firmware apq8053 apq8096au_firmware saipan_firmware sm6150_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware kamorta saipan sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.25% / 48.33%

||

7 Day CHG~0.00%

Published-18 Aug, 2017 | 18:00

Updated-20 Apr, 2025 | 01:37

In all Qualcomm products with Android releases from CAF using the Linux kernel, an array index out of bounds vulnerability exists in LPP.

Vendor-Google LLC Qualcomm Technologies, Inc.

Product-android Snapdragon Mobile, Snapdragon Wear

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.01% / 1.35%

||

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:26

Updated-18 Aug, 2025 | 18:27

Improper Validation of Array Index in DSP Service

Memory corruption while processing DDI call with invalid buffer.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_6900_firmware wsa8845h_firmware wsa8845 fastconnect_6900 fastconnect_7800_firmware sc8380xp_firmware wsa8845h wcd9385_firmware fastconnect_7800 wsa8840 wsa8845_firmware wcd9385 wsa8840_firmware wcd9380_firmware wcd9380 sc8380xp Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.01% / 1.35%

||

7 Day CHG~0.00%

Published-06 Aug, 2025 | 07:26

Updated-18 Aug, 2025 | 18:26

Improper Validation of Array Index in Bluetooth HOST

Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.

Vendor-Qualcomm Technologies, Inc.

Product-snapdragon_8c_compute_platform_\(sc8180x-ad\)snapdragon_8cx_compute_platform_\(sc8180x-aa\)wsa8845h_firmware wcd9340 snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmware sc8380xp_firmware wsa8840 wcd9370_firmware snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmware qcm6490_firmware snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)wcd9380 wcd9375_firmware fastconnect_6200_firmware fastconnect_6800_firmware snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmware wsa8835 fastconnect_6700 fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_6200 wsa8845 qca6391_firmware qcm6490 wsa8830 wsa8845h video_collaboration_vc3_platform_firmware snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmware wsa8840_firmware wcd9341 qcs6490_firmware wsa8830_firmware aqt1000 aqt1000_firmware qca6391 wsa8810 qcm5430_firmware snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)wcd9375 fastconnect_6900 qca6430 fastconnect_7800 wcd9385_firmware wsa8810_firmware wsa8845_firmware fastconnect_6800 wcd9385 snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmware sc8380xp video_collaboration_vc3_platform snapdragon_7c\+_gen_3_compute qcs5430_firmware qca6430_firmware qcs5430 snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)qca6420 snapdragon_7c\+_gen_3_compute_firmware snapdragon_8cx_compute_platform_\(sc8180x-ab\)wcd9341_firmware wsa8815 wsa8835_firmware fastconnect_7800_firmware qcs6490 wcd9340_firmware qcm5430 snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)wcd9380_firmware wsa8815_firmware qca6420_firmware wcd9370 Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-6.7||MEDIUM

EPSS-0.04% / 8.81%

||

7 Day CHG~0.00%

Published-08 Aug, 2023 | 09:14

Updated-02 Aug, 2024 | 09:44

Improper Validation of Array Index in GPS HLOS Driver

Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.

Vendor-Qualcomm Technologies, Inc.

Product-wsa8830 sda429w_firmware sa6150p_firmware wcd9380_firmware sa8145p_firmware qcs610 sw5100p sd865_5g qca6564au qcc5100 csrb31024 sdx55m_firmware wsa8835 wcn3950_firmware wcd9380 sa8150p_firmware qca6420_firmware qca6595au_firmware qca6390_firmware qcs410 wcd9370 qca6574a qca6564 qca6426 qca6430_firmware wcn3980 sa415m wcn3998 qam8295p sdxr2_5g_firmware wcn3950 wcn3660b sd855 wsa8815 wcn6850 qam8295p_firmware qca6426_firmware wcn3660b_firmware qca6574a_firmware qca6574au_firmware wcn3680b_firmware qca6595au wcn3998_firmware wcn3980_firmware qca6391 wcn3610_firmware qca6420 qca6436_firmware sdx55m sa8295p qcc5100_firmware aqt1000_firmware qca6564au_firmware sa6155p_firmware csrb31024_firmware sdxr2_5g wcn6851_firmware sa415m_firmware wcn3988_firmware qca6430 qca6574au sa6145p_firmware sa8155p_firmware sa8195p wsa8810_firmware wcd9341_firmware sw5100 wsa8810 sd870 qca6436 wcn6851 sa6155p sw5100p_firmware qcs610_firmware sa6145p wcn3680b qca6564_firmware wcd9341 qca6696_firmware sa8145p sd870_firmware qca6696 qca6391_firmware qca6390 wcd9370_firmware aqt1000 sa8150p sa6150p sa8155p wsa8830_firmware sda429w sd855_firmware sd865_5g_firmware wcn3988 wcn6850_firmware wsa8815_firmware wsa8835_firmware sa8195p_firmware sw5100_firmware qcs410_firmware sa8295p_firmware wcn3610 Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.81%

||

7 Day CHG~0.00%

Published-03 Feb, 2025 | 16:51

Updated-28 Feb, 2025 | 06:09

Improper Validation of Array Index in Automotive OS Platform

Memory corruption while reading CPU state data during guest VM suspend.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 8.53%

||

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:49

Data token is received from ADSP and is used without validation as an index into the array leads to out of bound access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware msm8909w sd_665_firmware sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 qcs405 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.04% / 12.50%

||

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:42

Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9635m_firmware mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 qcs404_firmware mdm9650 sd_636 sd_615_firmware snapdragon_high_med_2016_firmware msm8996au sd_820 sd_650 sd_450_firmware sd_845_firmware sd_410 sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_652 sd_425_firmware qcs404 sdx24_firmware sd_625_firmware sd_450 mdm9635m sd_8cx_firmware sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sxr1130_firmware sd_210_firmware sd_415_firmware sd_652_firmware sxr1130 sd_616_firmware sd_205_firmware sd_415 sd_212 sd_650_firmware sd_427_firmware sd_712 sd_730_firmware sd_412 qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 mdm9655_firmware sd_615 sd_710_firmware sdm630 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 snapdragon_high_med_2016 sd_212_firmware sd_850_firmware mdm9655 sdm439_firmware sd_412_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_8cx sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_410_firmware sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.33% / 55.32%

||

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 18:49

Out of boundary access due to token received from ADSP and is used without validation as an index into the array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 sd_615_firmware msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sdx24_firmware sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sd_210_firmware sd_415_firmware msm8909w sd_665_firmware sd_616_firmware sd_205_firmware sd_415 sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_615 sd_710_firmware sdm630 qcs405 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.73%

||

7 Day CHG~0.00%

Published-25 Jul, 2019 | 16:33

Updated-04 Aug, 2024 | 18:49

Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660

Vendor-Qualcomm Technologies, Inc.

Product-sd_427_firmware sd_712 sd_850 sd_855 sd_670_firmware sd_425 sdm660 sd_430_firmware qcs404_firmware sd_435 sd_636 sd_710_firmware sdm630 qcs405 sd_625 ipq8074_firmware sd_820_firmware sd_636_firmware sd_820 sd_450_firmware sd_845_firmware qca8081 qcs605_firmware sd_425_firmware qcs404 sd_850_firmware sd_625_firmware ipq8074 sd_450 qcs405_firmware sd_712_firmware sdm630_firmware sd_8cx_firmware sda660_firmware sd_845 sd_8cx qcs605 sd_427 sd_430 sd_670 sd_435_firmware sd_835_firmware sd_710 sd_835 sda660 qca8081_firmware sdm660_firmware sd_855_firmware Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.33% / 55.32%

||

7 Day CHG~0.00%

Published-12 Dec, 2019 | 08:30

Updated-04 Aug, 2024 | 18:49

Possible out of bounds write in a MT SMS/SS scenario due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8976, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9635m_firmware qcm2150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware snapdragon_high_med_2016_firmware sm6150 msm8909w_firmware msm8976_firmware msm8996au sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware mdm9635m apq8098 mdm9615 mdm9205 mdm9206_firmware msm8939 qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware mdm9655_firmware sdm660 sdm710 qm215 mdm9607 apq8017_firmware mdm9625_firmware sdm710_firmware msm8939_firmware mdm9150 msm8937 msm8905 snapdragon_high_med_2016 sm8150_firmware msm8909 sxr2130_firmware mdm9655 apq8096au sdm439_firmware sdm630_firmware mdm9205_firmware sda660_firmware mdm9625 qm215_firmware msm8976 sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 mdm9615_firmware apq8017 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 27.23%

||

7 Day CHG~0.00%

Published-21 Nov, 2019 | 14:38

Updated-04 Aug, 2024 | 18:49

Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sdm850_firmware sdm670_firmware qcs404 sdx24_firmware sm8150_firmware sxr2130_firmware sda845_firmware sdm845 mdm9205_firmware sdx24 mdm9205 qcs404_firmware qcs605 sdx55 sm7150_firmware sm6150_firmware sdm710 sm6150 sm8150 sdm850 sdm710_firmware sxr1130_firmware sdx55_firmware sm7150 sxr1130 sdm670 sxr2130 qcs605_firmware sda845 sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.25% / 48.30%

||

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 18:42

Improper validation of array index causes OOB write and then leads to memory corruption in MMCP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9635m_firmware mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdm439 mdm9650 sd_636 sd_615_firmware snapdragon_high_med_2016_firmware msm8909w_firmware msm8996au sd_820 sd_650 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware sd_652 sd_425_firmware sd_665 sd_625_firmware sd_450 mdm9635m sd_8cx_firmware mdm9615 sd_845 qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 sxr1130_firmware sd_210_firmware sd_415_firmware sd_652_firmware sxr1130 msm8909w sd_665_firmware sd_616_firmware sd_205_firmware sd_415 sd_212 sd_650_firmware sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 mdm9655_firmware sd_615 sd_710_firmware sdm630 sd_625 sd_820_firmware sd_210 mdm9607 sd_636_firmware mdm9625_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 snapdragon_high_med_2016 sd_212_firmware sd_850_firmware mdm9655 sdm439_firmware sd_855_firmware sd_712_firmware sdm630_firmware sda660_firmware mdm9625 sd_8cx sd_430 sd_427 sd_670 sd_435_firmware mdm9615_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.81%

||

7 Day CHG~0.00%

Published-05 Sep, 2023 | 06:24

Updated-02 Aug, 2024 | 13:43

Improper Validation of Array Index in WLAN HAL

Memory corruption in WLAN HAL while parsing WMI command parameters.

Vendor-Qualcomm Technologies, Inc.

Product-qam8255p_firmware qca2066 sa6150p_firmware sc8180x-ab_firmware qca8337 ar9380 ipq8173_firmware qca6431_firmware wcd9360_firmware qcn5124 qca4024_firmware wcn3950_firmware snapdragon_8_gen_1 sc8180x\+sdx55 ipq8078a ipq5028_firmware sa8150p_firmware qca6595au_firmware sa6155 qca2062 snapdragon_x55_5g snapdragon_xr2\+_gen_1 sc8180xp-ad qca6554a_firmware qam8295p wcn3950 qcn6024_firmware ipq8076a qca8386_firmware sd_8_gen1_5g_firmware qca8084_firmware qsm8350_firmware qsm8350 snapdragon_x65_5g_firmware sm7315_firmware snapdragon_778g\+_5g snapdragon_x55_5g_firmware qca6574au_firmware qcn5164_firmware ipq8071 wcd9375_firmware qca8081_firmware sa6155_firmware qca6420 wcd9360 qcn9002 snapdragon_xr2_5g qca9986 snapdragon_888_5g ipq8070_firmware sc8180xp-af ipq8065 ipq8078a_firmware qca6678aq_firmware qrb5165m_firmware ipq5028 ipq8072_firmware sc8180xp-aa_firmware qca6698aq sa8155_firmware ipq6010 ipq8068 qca6430 snapdragon_870_5g snapdragon_778g\+_5g_firmware wcd9340 qcn6132 qca6436 sa6155p qca6698aq_firmware snapdragon_865\+_5g_firmware qca9888_firmware qcn6122 wcd9341 sa8255p ipq8068_firmware qca6696_firmware qca2066_firmware qca6431 sc8180xp-ab_firmware qca1062 ipq9008_firmware sc8180x-ab qcn5154_firmware qca6797aq sa8150p snapdragon_auto_4g_firmware wsa8830_firmware qca9992_firmware sd865_5g_firmware snapdragon_778g_5g sa8195p_firmware fastconnect_6800_firmware qcn5022_firmware snapdragon_865_5g_firmware sa8295p_firmware qca9985_firmware immersive_home_216_firmware qca8337_firmware wcd9380_firmware ssg2125p ipq8072a qca9980_firmware immersive_home_214_firmware ipq8076a_firmware ipq8078 qca8084 qcn9001_firmware ipq8173 snapdragon_8_gen_1_firmware qca6564au ipq9008 qcn5164 snapdragon_ar2_gen_1 qca6574 csr8811_firmware wcd9380 sc8180xp-aa fastconnect_6700 qcn5054_firmware qcn5024 snapdragon_auto_5g sxr1230p sc8180xp-ad_firmware qca9985 qcn9012_firmware qca8072_firmware qcn9274_firmware sc8180x-ac_firmware qca6430_firmware qcn5052_firmware wcn3980 ipq6018_firmware wcd9340_firmware wsa8815 pmp8074_firmware qcn6112 snapdragon_xr2\+_gen_1_firmware qca9986_firmware qcs8250 qca6426_firmware qca9984 ipq6028 ipq8064 sc8180x-ad pmp8074 qcn9024 ipq9574_firmware wcn3980_firmware snapdragon_888_5g_firmware ipq8064_firmware sa8295p qca6421_firmware qca2062_firmware wcn6740_firmware qcs4490_firmware qca6678aq ipq8078_firmware fastconnect_6900 qcn5054 fastconnect_6900_firmware ipq8070 immersive_home_318 qca9994 qca6797aq_firmware qca9980 qcn9024_firmware ipq8174_firmware snapdragon_8\+_gen_1_firmware wsa8832 sc8180xp-ac_firmware qsm8250 sa6145p ipq6018 qca9886_firmware qcs4490 qca6595_firmware sa8145p sc8280xp-bb qca6391_firmware 315_5g_iot_firmware sa4150p_firmware qca4024 wcd9370_firmware qca2064 sdx55 sd888_firmware qcn5021_firmware sa8155p ssg2115p_firmware qam8255p ar8035_firmware qsm8250_firmware qcn5024_firmware wsa8830 qcn9070 sxr2230p_firmware sa8145p_firmware snapdragon_x65_5g qca1062_firmware immersive_home_318_firmware csrb31024 snapdragon_7c\+_gen_3_firmware qca8082 qcn9072 sc8280xp-bb_firmware qca8386 qca9992 qca6420_firmware qca2064_firmware ipq6000 wcd9370 immersive_home_216 ssg2115p ipq8072 qcn5152_firmware qca6426 sc8280xp-ab qca6584au_firmware qrb5165n_firmware qcn9000_firmware qca9984_firmware wcd9385_firmware snapdragon_782g_firmware fastconnect_6200 snapdragon_780g_5g_firmware ipq8074a qca2065 qcn5124_firmware qam8295p_firmware qcn6102_firmware qcn9011_firmware qca1064 sa8155 flight_rb5_5g_firmware qcn6100_firmware qca8082_firmware qcn5122_firmware sdx55_firmware qca6595au qcn6023_firmware qca6436_firmware qrb5165n snapdragon_888\+_5g ipq5010 immersive_home_214 qca6564au_firmware qca6584au sa6155p_firmware qcn9274 ipq8174 qcn9001 qca9990 qcs6490 qcn5052 qcs8550_firmware qcn6112_firmware snapdragon_778g_5g_firmware qcn9074 sa6145p_firmware qca6421 qca8085 fastconnect_6700_firmware sa8195p wsa8810_firmware robotics_rb5 sa8255p_firmware snapdragon_780g_5g qca8081 qcm4490 qcn6023 ipq8071a ipq8071a_firmware wcd9385 qca8085_firmware sxr2130_firmware snapdragon_auto_4g qcs6490_firmware qca2065_firmware immersive_home_316_firmware sc8180x-ac snapdragon_xr2_5g_firmware ar8035 wcd9375 csr8811 aqt1000 315_5g_iot sc8180x\+sdx55_firmware qcn9100_firmware ipq5010_firmware ipq8074a_firmware wsa8815_firmware qcm6490 wsa8835_firmware sa4150p qca8072 snapdragon_865_5g qcn9000 qca6554a sd865_5g fastconnect_6800 qca6595 ar9380_firmware qcn9012 sd888 qcn6122_firmware ipq8065_firmware sxr1230p_firmware snapdragon_auto_5g_firmware wsa8835 sd_8_gen1_5g snapdragon_7c\+_gen_3 snapdragon_865\+_5g qcn5154 qca8075_firmware sc8180xp-ac sxr2130 ssg2125p_firmware qca6574a qca9889 sc8180x-af sm7325p qcn6132_firmware qcn9003_firmware qca9888 ipq8074 qca9994_firmware snapdragon_8\+_gen_1 qcn9003 ipq8070a_firmware ipq8076_firmware qca6574_firmware qca9886 snapdragon_888\+_5g_firmware sm7325p_firmware sxr2230p ipq8076 snapdragon_782g qca6574a_firmware fastconnect_6200_firmware qcn5021 qcn5152 qrb5165m sm7315 qca6391 sc8280xp-ab_firmware fastconnect_7800 aqt1000_firmware qcn6102 qcn9100 qcm4490_firmware snapdragon_ar2_gen_1_firmware csrb31024_firmware qcm6490_firmware wsa8832_firmware qcn9070_firmware ipq6028_firmware ipq8072a_firmware qcn9011 sc8180xp-af_firmware ipq8074_firmware immersive_home_316 qca9889_firmware qca6574au sa8155p_firmware qcn5122 ipq9574 qcs8250_firmware wcd9341_firmware fastconnect_7800_firmware wsa8810 sc8180x-aa_firmware robotics_rb5_firmware qcn5022 sc8180x-aa ipq6010_firmware sc8180x-af_firmware qca1064_firmware wcn6740 qca6696 qcs8550 sc8180xp-ab sa6150p qca8075 qcn9022_firmware snapdragon_870_5g_firmware qcn6024 qcn9022 qca9990_firmware flight_rb5_5g qcn9002_firmware ipq8070a qcn6100 qcn9072_firmware sc8180x-ad_firmware ipq6000_firmware ipq8071_firmware qcn9074_firmware Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 2.59%

||

7 Day CHG~0.00%

Published-06 May, 2025 | 08:32

Updated-09 May, 2025 | 19:14

Improper Validation of Array Index in Camera Driver

Memory corruption while prociesing command buffer buffer in OPE module.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 27.23%

||

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 22:32

u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sdm850_firmware sa6155p_firmware qcs610 sdm845 sdx20 sdx24 qcs404_firmware sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 sm7150_firmware ipq8074_firmware sdm710 sc7180_firmware sm6150 sdm710_firmware sm7150 qcn7605_firmware sa6155p sdm670 qca8081 qcs610_firmware qcs605_firmware sc8180x sxr2130 ipq6018 sdm670_firmware qcs404 sdx24_firmware sm8150_firmware ipq8074 sxr2130_firmware qcs405_firmware rennell sa415m sc7180 bitra sda845_firmware mdm9205_firmware qcn7605 rennell_firmware ipq6018_firmware mdm9205 qcs605 sdx55 saipan_firmware sm6150_firmware sm8250 bitra_firmware sm8150 sdx20_firmware sdm850 sxr1130_firmware sdx55_firmware qca8081_firmware nicobar_firmware saipan sxr1130 sda845 nicobar sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.06%

||

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:16

Updated-20 Aug, 2025 | 21:19

Improper Validation of Array Index in Computer Vision

Memory corruption may occur while processing device IO control call for session control.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_6900_firmware wcd9385_firmware wsa8845_firmware wsa8840_firmware sc8380xp wsa8845 wsa8840 wsa8845h_firmware fastconnect_7800 fastconnect_7800_firmware wsa8845h sc8380xp_firmware wcd9380_firmware fastconnect_6900 wcd9380 wcd9385 Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 4.06%

||

7 Day CHG~0.00%

Published-07 Apr, 2025 | 10:15

Updated-19 Aug, 2025 | 17:07

Improper Validation of Array Index in Display

Memory corruption occurs when handling client calls to EnableTestMode through an Escape call.

Vendor-Qualcomm Technologies, Inc.

Product-qcm6490_firmware snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)aqt1000 snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware snapdragon_7c\+_gen_3_compute_firmware sm6250 snapdragon_7c_compute_platform_\(sc7180-ac\)wsa8835 qca6391 snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)fastconnect_7800_firmware wsa8845_firmware sc8180x\+sdx55_firmware wsa8830 snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmware wsa8845h_firmware snapdragon_8c_compute_platform_\(sc8180xp-ad\)snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)_firmware qca6430 qcs6490_firmware snapdragon_8cx_compute_platform_\(sc8180x-aa\)wsa8815_firmware video_collaboration_vc3_platform_firmware wsa8810 qca6420 snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)wcd9370_firmware snapdragon_8c_compute_platform_\(sc8180x-ad\)fastconnect_6800 snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmware fastconnect_6200_firmware wsa8840_firmware wsa8810_firmware wcd9380_firmware wsa8835_firmware snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmware wcd9341 snapdragon_8cx_compute_platform_\(sc8180xp-ac\)_firmware wcd9370 sm6250_firmware aqt1000_firmware qcm5430_firmware snapdragon_8cx_compute_platform_\(sc8180xp-af\)wcd9385 snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware fastconnect_6800_firmware snapdragon_7c\+_gen_3_compute wsa8840 wcd9375_firmware sc8180x\+sdx55 wcd9385_firmware wsa8815 wcd9341_firmware snapdragon_8cx_compute_platform_\(sc8180xp-ac\)fastconnect_6700_firmware fastconnect_7800 snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)qcs5430 snapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmware wsa8845h sc8380xp wcd9340 qcm6490 qcs5430_firmware fastconnect_6900_firmware snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmware fastconnect_6700 qca6430_firmware snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmware wsa8845 fastconnect_6900 qcs6490 wcd9375 video_collaboration_vc3_platform snapdragon_8cx_compute_platform_\(sc8180xp-af\)_firmware sc8380xp_firmware snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)wcd9340_firmware qcm5430 snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmware snapdragon_8cx_compute_platform_\(sc8180x-ab\)qca6391_firmware wsa8830_firmware wcd9380 snapdragon_7c_compute_platform_\(sc7180-ac\)_firmware fastconnect_6200 qca6420_firmware snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)_firmware Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.84%

||

7 Day CHG~0.00%

Published-14 Jun, 2019 | 17:02

Updated-05 Aug, 2024 | 05:47

Buffer overflow in WLAN driver event handlers due to improper validation of array index in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS405, QCS605, SD 636, SD 675, SD 730, SD 820A, SD 835, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sd_855 sd_730_firmware mdm9640_firmware sd_820a sd_675 msm8996au_firmware sdx20 sdm660 sdx24 sdm630 mdm9607_firmware sd_636 mdm9650 qcs405 mdm9607 msm8996au sd_636_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_730 sdx24_firmware sd_855_firmware qcs405_firmware sdm630_firmware sda660_firmware mdm9206_firmware qcs605 sd_835_firmware mdm9650_firmware sdx20_firmware sd_835 sda660 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-5.5||MEDIUM

EPSS-0.05% / 13.84%

||

7 Day CHG~0.00%

Published-01 Apr, 2024 | 15:05

Updated-11 Aug, 2025 | 15:06

Improper Validation of Array Index in Audio

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.

Vendor-Qualcomm Technologies, Inc.

Product-qcs410_firmware sa6150p_firmware sd865_5g qcs610_firmware sxr2130_firmware srv1m qca8081_firmware wcd9370 ar8035_firmware qca6696 snapdragon_778g\+_5g_mobile wcd9340_firmware wcd9341_firmware sd888_firmware qcc710_firmware qca6426 wcn6740_firmware fastconnect_6700 wcn3610 snapdragon_780g_5g_mobile qcn9074 snapdragon_782g_mobile_firmware wsa8815_firmware snapdragon_wear_4100\+_firmware sa8195p_firmware qca8337_firmware qca8337 qca6426_firmware qca9377_firmware qca6574au_firmware qam8295p wcd9341 qca6574au sa8620p_firmware snapdragon_888\+_5g_mobile_firmware wcn3950 wsa8810_firmware snapdragon_870_5g_mobile_firmware snapdragon_778g_5g_mobile_firmware sa9000p_firmware srv1h snapdragon_auto_5g_modem-rf_gen_2_firmware snapdragon_7c\+_gen_3_compute wcn3660b_firmware fastconnect_6800_firmware snapdragon_778g\+_5g_mobile_firmware sa8295p_firmware snapdragon_870_5g_mobile video_collaboration_vc1_platform_firmware sa8770p c-v2x_9150 qca6584au qcn6274_firmware sd888 qcc710 snapdragon_xr2_5g_firmware wcn6740 snapdragon_780g_5g_mobile_firmware fastconnect_6800 qfw7114_firmware snapdragon_wear_4100\+fastconnect_7800_firmware fastconnect_6900 video_collaboration_vc1_platform snapdragon_865_5g_mobile_firmware sa7255p qfw7114 wcd9385_firmware fastconnect_6900_firmware qam8255p_firmware wcd9380 sa6145p_firmware qam8255p snapdragon_xr2_5g sa8150p sa6155p wsa8810 qam8650p sa9000p srv1h_firmware snapdragon_888_5g_mobile_firmware video_collaboration_vc3_platform snapdragon_888_5g_mobile sm7315_firmware c-v2x_9150_firmware sa6155p_firmware qam8295p_firmware srv1m_firmware snapdragon_782g_mobile sm7315 snapdragon_x55_5g_modem-rf qfw7124_firmware qca6698aq_firmware qca6436_firmware snapdragon_888\+_5g_mobile wcd9385 qca9367_firmware snapdragon_x55_5g_modem-rf_firmware snapdragon_7c\+_gen_3_compute_firmware wcn3610_firmware sa8255p snapdragon_865\+_5g_mobile wcd9370_firmware qca9367 sa7255p_firmware wcn3660b sxr2130 sa8195p wcd9340 qamsrv1m snapdragon_auto_5g_modem-rf_gen_2 sm7325p qam8650p_firmware qca6584au_firmware wcn3980_firmware qcn6274 qca6436 qfw7124 sa8775p wsa8835 qca6391_firmware sa8775p_firmware qamsrv1h qca6696_firmware wcd9380_firmware sa6150p qcs410 sa8155p_firmware qca8081 wsa8815 sa8155p wsa8830 qam8775p qca9377 sa6145p snapdragon_x75_5g_modem-rf qcn9074_firmware sa8620p sa8255p_firmware ar8035 qamsrv1m_firmware sa8650p_firmware snapdragon_865_5g_mobile wcd9375_firmware qca6391 qcn6224 snapdragon_865\+_5g_mobile_firmware qca6698aq wcn3950_firmware sa8770p_firmware sa8295p fastconnect_7800 sa8145p_firmware sa8650p qam8775p_firmware sd865_5g_firmware sm7325p_firmware wcn3680b wcd9375 sa8150p_firmware fastconnect_6700_firmware qamsrv1h_firmware video_collaboration_vc3_platform_firmware sa8145p snapdragon_x75_5g_modem-rf_firmware wsa8835_firmware wcn3980 snapdragon_778g_5g_mobile wsa8830_firmware wcn3680b_firmware qcn6224_firmware qcs610 Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-8.4||HIGH

EPSS-0.13% / 32.92%

||

7 Day CHG~0.00%

Published-05 Dec, 2023 | 03:04

Updated-11 Aug, 2025 | 15:06

Improper Validation of Array Index in Kernel

Memory corruption in Kernel while parsing metadata.

Vendor-Qualcomm Technologies, Inc.

Product-sw5100p qca8386_firmware sa6150p_firmware ipq9574 qca8082_firmware qcn9000_firmware qca6595 qcn9022 wcd9335 ipq6028_firmware immersive_home_214_platform qca8081_firmware wcd9370 wsa8830_firmware qca6696 qcn5022_firmware ipq5028_firmware sa4150p_firmware snapdragon_w5\+_gen_1_wearable_platform_firmware qcn6024 qca4024_firmware qca0000_firmware ipq8076 ipq9008 ipq9554 ipq6018_firmware qcn6023 immersive_home_214_platform_firmware ipq9008_firmware qcn5124_firmware qcn9074 sa4150p immersive_home_216_platform sa8195p_firmware snapdragon_x12_lte_modem_firmware qca9888 ipq5332 ipq6000 qcn9013 qca9377_firmware ipq8173 ipq8072a_firmware ipq8078a qca6574au_firmware qcm6490_firmware ipq8078a_firmware wcn785x-5 qam8295p ipq6010_firmware qca6574au wcn785x-5_firmware snapdragon_x12_lte_modem qcn6112_firmware sa9000p_firmware qcn9100_firmware snapdragon_x65_5g_modem-rf_system_firmware qca6797aq_firmware qcn5122 ipq5028 qca8085_firmware qcf8001_firmware qcn9070_firmware sa8295p_firmware qcn6024_firmware sa4155p_firmware qcn9022_firmware ipq5010_firmware qcn6132 ipq6018 sa4155p sa8770p qcn9000 qcn6132_firmware sw5100_firmware wcn685x-5 qca4024 qca6595_firmware ipq5332_firmware qcn5052 immersive_home_216_platform_firmware ipq8070a wcd9385_firmware ipq9574_firmware qam8255p_firmware wcd9380 sa6145p_firmware qam8255p ipq8074a_firmware ipq8076a qcn5164 sa8150p qca8075_firmware snapdragon_8_gen_1_mobile_platform_firmware immersive_home_3210_platform_firmware qcf8000 qcn5052_firmware sa6155p snapdragon_auto_5g_modem-rf_firmware csr8811_firmware qca8075 qam8650p qca8085 sa9000p ipq6010 sdx65m_firmware qca6595au video_collaboration_vc3_platform sw5100 sa6155p_firmware qam8295p_firmware qca6698aq_firmware wcd9385 qcn9012 ipq8070a_firmware qcn9070 qca8084_firmware qcf8001 qca8084 sa8255p immersive_home_318_platform_firmware wcn6750 qcn5024 sdx65m wcn6750_firmware wcd9370_firmware sdx55_firmware ipq8071a_firmware snapdragon_auto_5g_modem-rf ipq9570 qca6574a ipq6028 qca6174a sa8195p qcn9100 immersive_home_326_platform qca6174a_firmware qcm6490 immersive_home_316_platform_firmware qam8650p_firmware qcn5154_firmware qcn6122_firmware qcn9013_firmware immersive_home_3210_platform wcn3988 qcs6490_firmware qcn5122_firmware qcn9274 ipq8076_firmware qcn5152_firmware ipq8076a_firmware qcn9024 qca6574 sa8775p snapdragon_x65_5g_modem-rf_system wcd9335_firmware ipq9570_firmware qca6595au_firmware qca0000 wsa8835 sw5100p_firmware sa8775p_firmware qca6696_firmware qcn9024_firmware wcd9380_firmware qca8082 sa6150p qca6574_firmware sa8155p_firmware qca8081 sa8155p wcn3980_firmware qcn5124 qam8775p qca6797aq qca9377 wsa8830 qcf8000_firmware qcn5152 sa6145p qcn9074_firmware ipq8174 qcn6122 ipq8174_firmware sa8255p_firmware wcn785x-1_firmware ipq8072a qca6574a_firmware qcn9072_firmware sdx55 qca9888_firmware ipq8074a immersive_home_318_platform qca9889 qcn5024_firmware wcd9375_firmware qca8386 ipq5010 wcn785x-1 ipq8071a ipq8173_firmware qcn6112 qca6698aq qcn9012_firmware qcn9274_firmware sa8770p_firmware sa8295p snapdragon_8_gen_1_mobile_platform ipq6000_firmware wcn685x-1 sa8145p_firmware qam8775p_firmware ipq8078_firmware wcd9375 wcn685x-5_firmware sa8150p_firmware qca9889_firmware snapdragon_w5\+_gen_1_wearable_platform wcn3988_firmware qcn5154 video_collaboration_vc3_platform_firmware sa8145p immersive_home_316_platform qcn5164_firmware qcn6023_firmware wsa8835_firmware csr8811 ipq8078 immersive_home_326_platform_firmware qcn5022 qcs6490 ipq9554_firmware wcn3980 qcn9072 wcn685x-1_firmware Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.73%

||

7 Day CHG~0.00%

Published-07 Feb, 2020 | 05:00

Updated-05 Aug, 2024 | 00:05

Out of bound access while allocating memory for an array in camera due to improper validation of elements parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in QCS605, SDM439, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sdx24_firmware sdm439_firmware sdx24 sdm439 qcs605 qcs605_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 8.43%

||

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-05 Aug, 2024 | 00:05

Possible buffer overflow issue in error processing due to improper validation of array index value in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8064, APQ8096AU, IPQ4019, IPQ8064, IPQ8074, MDM9607, MDM9615, MDM9640, MSM8996AU, QCN7605

Vendor-Qualcomm Technologies, Inc.

Product-mdm9640_firmware ipq8074 apq8064 apq8096au msm8996au_firmware qcn7605 mdm9615 mdm9607_firmware ipq4019 ipq8074_firmware apq8096au_firmware mdm9607 msm8996au mdm9615_firmware ipq8064 apq8064_firmware qcn7605_firmware ipq8064_firmware ipq4019_firmware mdm9640 Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.37% / 58.01%

||

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-05 Aug, 2024 | 00:12

Out of bound write can happen due to lack of check of array index value while parsing SDP attribute for SAR in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCM2150, QCS605, QM215, Rennell, SA415M, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-kamorta_firmware qcm2150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8996au sm7150 msm8917 sdm670 qcs605_firmware sc8180x sdm670_firmware sdx24_firmware sdm636 sda845_firmware sa415m qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sxr1130_firmware sxr1130 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sdm660 sc8180x_firmware sa415m_firmware sdm710 qm215 sc7180_firmware mdm9607 sdm710_firmware msm8937 msm8905 sm8150_firmware msm8909 apq8096au sdm439_firmware rennell sc7180 sdm630_firmware sda660_firmware rennell_firmware qm215_firmware msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8150 sdm850 kamorta nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.11% / 29.97%

||

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-05 Aug, 2024 | 00:12

Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, QCM2150, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM636, SDM660, SDX20

Vendor-Qualcomm Technologies, Inc.

Product-msm8920 qcm2150_firmware msm8953 sdm450 sdm636_firmware sdm429w msm8996au_firmware sdm632_firmware apq8098_firmware sdm450_firmware sdm632 sdx20 qcm2150 msm8920_firmware sdm439 mdm9607_firmware sdm660 mdm9650 sdm429 msm8940_firmware qcs405 msm8909w_firmware mdm9607 msm8996au qm215 sdm429w_firmware apq8017_firmware apq8009_firmware msm8909w msm8917 msm8937 mdm9207c_firmware msm8996_firmware qcs605_firmware mdm9206 mdm9207c apq8096au sdm439_firmware qcs405_firmware sda845_firmware sdm636 apq8098 sda660_firmware mdm9206_firmware qcs605 qm215_firmware msm8940 apq8053 apq8096au_firmware msm8953_firmware msm8917_firmware msm8937_firmware mdm9650_firmware sdm429_firmware sdx20_firmware sda660 apq8017 msm8996 apq8009 apq8053_firmware sdm660_firmware sda845 Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.73%

||

7 Day CHG~0.00%

Published-16 Apr, 2020 | 10:46

Updated-05 Aug, 2024 | 00:05

Possible out of bound array access as there is no check on carrier index passed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9635m_firmware apq8096_firmware mdm9640_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 apq8096 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au mdm9645 sdm429w_firmware sm7150 msm8917 sdm670 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware mdm9635m apq8098 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sdm660 mdm9655_firmware sc8180x_firmware sdm710 qm215 sc7180_firmware mdm9607 mdm9645_firmware mdm9625_firmware sdm710_firmware mdm9150 msm8937 msm8905 sm8150_firmware msm8909 mdm9655 apq8096au sdm439_firmware rennell sc7180 sdm630_firmware sda660_firmware mdm9625 rennell_firmware qm215_firmware sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware sdm850 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 8.17%

||

7 Day CHG~0.00%

Published-07 Feb, 2020 | 05:00

Updated-05 Aug, 2024 | 00:05

Out of bound access due to access of uninitialized memory segment in an array of pointers while normal camera open close in Snapdragon Consumer IOT, Snapdragon Mobile in QCS605, SDM439, SDM630, SDM636, SDM660, SDX24

Vendor-Qualcomm Technologies, Inc.

Product-sdx24_firmware sdm636_firmware sdm439_firmware sdm636 sdm660_firmware sdm630_firmware sdx24 sdm630 sdm660 sdm439 qcs605 qcs605_firmware Snapdragon Consumer IOT, Snapdragon Mobile

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-908

Use of Uninitialized Resource

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.25% / 48.30%

||

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 22:24

Out of bound access due to improper validation of array index cause the index table entry to get corrupt in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9206, MDM9607, MSM8909W, MSM8996AU, QCA6574AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 600, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 sd_632 sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdm439 sd_636 msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware mdm9206 sd_425_firmware sd_665 sd_625_firmware sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware sd_835 qca6574au_firmware sda660 sd_210_firmware sd_600 msm8909w sd_665_firmware sd_205_firmware sd_212 sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_710_firmware sdm630 qcs405 sd_625 qca6574au sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_600_firmware sd_205 sdm660_firmware sd_855_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 7.73%

||

7 Day CHG~0.00%

Published-18 Dec, 2019 | 05:25

Updated-04 Aug, 2024 | 22:24

Out of bound access occurs while handling the WMI FW event due to lack of check of buffer argument which comes directly from the WLAN FW in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8096AU, IPQ4019, IPQ8064, IPQ8074, MDM9607, MSM8996AU, QCA6574AU, QCA8081, QCN7605, SDX55, SM6150, SM7150, SM8150

Vendor-Qualcomm Technologies, Inc.

Product-sm8150_firmware ipq8074 apq8096au msm8996au_firmware qcn7605 mdm9607_firmware ipq4019 sdx55 sm7150_firmware ipq8074_firmware qca6574au sm6150 apq8096au_firmware mdm9607 msm8996au sm6150_firmware sm8150 ipq8064 qca6574au_firmware sm7150 sdx55_firmware qca8081_firmware qcn7605_firmware qca8081 ipq8064_firmware ipq4019_firmware Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 27.23%

||

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 22:31

u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-qcs610 sdm845 sdx24 qcs404_firmware mdm9650 sm7150_firmware sm6150 sm7150 qca6390_firmware sdm670 sxr2130 qcs605_firmware sc8180x sdm670_firmware qcs404 sdx24_firmware sdm636 sda845_firmware sa415m bitra apq8098 qcn7605 mdm9205 qcs605 bitra_firmware mdm9650_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 sda845 nicobar sdm850_firmware sa6155p_firmware sdm636_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 sdm630 sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 sdm710 sc7180_firmware sdm710_firmware qcn7605_firmware sa6155p qcs610_firmware sm8150_firmware sxr2130_firmware qcs405_firmware rennell sc7180 sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware qca6390 sdx55 saipan_firmware sm6150_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 nicobar_firmware saipan sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 11.82%

||

7 Day CHG~0.00%

Published-06 Nov, 2019 | 17:11

Updated-04 Aug, 2024 | 22:24

Payload size is not checked before using it as array index in audio in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-sd_850 mdm9150_firmware sd_632 mdm9640_firmware sd_820a sd_675 msm8996au_firmware sd_439 sd_670_firmware sd_429 sdx24 sdm439 mdm9650 sd_636 sd_615_firmware msm8909w_firmware msm8996au sd_820 sd_450_firmware sd_845_firmware sd_820a_firmware qcs605_firmware sd_675_firmware ipq4019_firmware mdm9206 sd_425_firmware sd_665 sdx24_firmware sd_625_firmware ipq8074 sd_450 sd_845 mdm9206_firmware qcs605 sd_632_firmware sd_835_firmware mdm9650_firmware sd_835 sda660 ipq8064 sd_210_firmware sxr1130_firmware sd_415_firmware sxr1130 msm8909w sd_665_firmware sd_616_firmware sd_205_firmware sd_415 sd_212 ipq8064_firmware sd_427_firmware sd_712 sd_855 sd_730_firmware qualcomm_215 sdx20 sd_616 sd_425 sdm660 sd_430_firmware mdm9607_firmware sd_435 sd_615 sd_710_firmware sdm630 qcs405 sd_625 ipq8074_firmware sd_820_firmware sd_210 mdm9607 sd_636_firmware sd_439_firmware qualcomm_215_firmware mdm9150 sd_429_firmware sd_730 sd_212_firmware sd_850_firmware sd_855_firmware sdm439_firmware qcs405_firmware sd_712_firmware sdm630_firmware sda660_firmware sd_430 ipq4019 sd_427 sd_670 sd_435_firmware sdx20_firmware sd_710 sd_205 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-9.8||CRITICAL

EPSS-0.31% / 53.80%

||

7 Day CHG~0.00%

Published-12 Dec, 2019 | 08:30

Updated-04 Aug, 2024 | 22:24

Possibility of memory overflow while decoding GSNDCP compressed mode PDU in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8976, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9635m_firmware qcm2150_firmware mdm9640_firmware sdm632_firmware msm8996au_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware snapdragon_high_med_2016_firmware sm6150 msm8909w_firmware msm8976_firmware msm8996au sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware mdm9635m apq8098 mdm9615 mdm9205 mdm9206_firmware msm8939 qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware mdm9655_firmware sdm660 sc8180x_firmware sdm710 qm215 mdm9607 apq8017_firmware mdm9625_firmware sdm710_firmware msm8939_firmware mdm9150 msm8937 msm8905 snapdragon_high_med_2016 sm8150_firmware msm8909 sxr2130_firmware mdm9655 apq8096au sdm439_firmware sdm630_firmware mdm9205_firmware sda660_firmware mdm9625 qm215_firmware msm8976 sdx55 msm8953_firmware msm8940 sm6150_firmware apq8053 apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 mdm9615_firmware apq8017 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 10.42%

||

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 22:24

u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9640_firmware qcs610 sdm450_firmware sdm632 qcs404_firmware mdm9650 apq8009_firmware msm8917 sdm670 qcs605_firmware sda845_firmware sa415m qca4531 bitra apq8098 qcn7605 mdm9206_firmware bitra_firmware msm8905_firmware qca6574au_firmware sda660 sdx55_firmware qca8081_firmware sxr1130 msm8909w apq8053_firmware sda845 sa6155p_firmware sdm450 sdm636_firmware sa515m_firmware apq8098_firmware msm8998_firmware sdm630 mdm9607_firmware sm8250_firmware sa415m_firmware qcs405 qm215 sc7180_firmware apq8017_firmware sdm710_firmware sa6155p qca8081 msm8937 msm8905 sm8150_firmware msm8909 sxr2130_firmware rennell sc7180 msm8953_firmware saipan_firmware sm6150_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware sdm850 kamorta apq8017 msm8996 saipan qcn7606_firmware mdm9640 kamorta_firmware qca4531_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdx24 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 sxr2130 sc8180x mdm9206 sdm670_firmware qcs404 sdx24_firmware ipq8074 sdm636 ipq6018_firmware mdm9205 sa515m qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware sxr1130_firmware apq8009 msm8909_firmware nicobar sdm850_firmware msm8920 msm8953 sdx20 qcm2150 msm8920_firmware sdm660 sc8180x_firmware ipq8074_firmware qca6574au sdm710 mdm9607 qcn7605_firmware qcs610_firmware mdm9150 mdm9207c_firmware msm8996_firmware ipq6018 mdm9207c apq8096au sdm439_firmware qcs405_firmware sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8940 apq8053 apq8096au_firmware sm8250 nicobar_firmware sdm660_firmware qcn7606 sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-129

Improper Validation of Array Index

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-6

Assigner-Qualcomm, Inc.

Matching Score-6

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.01%

||

7 Day CHG~0.00%

Published-21 Nov, 2019 | 14:38

Updated-04 Aug, 2024 | 22:24

Out-of-bounds access can occur in camera driver due to improper validation of array index in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, QCN7605, SDA660, SDM450, SDM630, SDM636, SDM660, SDX20

Vendor-Qualcomm Technologies, Inc.

Product-msm8920 mdm9640_firmware msm8953 sdm450 sdm636_firmware msm8996au_firmware apq8098_firmware sdm450_firmware msm8998_firmware sdx20 sdm660 msm8920_firmware sdm630 mdm9607_firmware mdm9650 msm8940_firmware msm8909w_firmware mdm9607 msm8996au apq8017_firmware apq8009_firmware qcn7605_firmware msm8909w msm8917 msm8937 mdm9207c_firmware mdm9206 msm8905 mdm9207c msm8909 apq8096au sdm636 sdm630_firmware apq8098 qcn7605 sda660_firmware mdm9206_firmware msm8940 apq8053 apq8096au_firmware msm8953_firmware msm8917_firmware msm8937_firmware mdm9650_firmware msm8998 sdx20_firmware msm8905_firmware sda660 apq8017 apq8009 msm8909_firmware apq8053_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index