ByteOS Network

u'Incorrect validation of ring context fetched from host memory can lead to memory overflow' in Snapdragon Compute, Snapdragon Mobile in QSM8350, SC7180, SDX55, SDX55M, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR2130, SXR2130P

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2020-3665

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 16.80%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:44

A possible buffer overflow would occur while processing command from firmware due to the group_id obtained from the firmware being out of range in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9615, MDM9640, MDM9650, MSM8909W, MSM8996, MSM8996AU, QCA6174A, QCA9377, QCA9379, SDM439, SDM636, SDM660, SDX20, SDX24, SM8150

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2020-3635

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.95%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:37

Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, Saipan, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 msm8917 sdm670 sxr2130 qcs605_firmware sdm670_firmware sdm636 apq8098 qcs605 msm8937_firmware sdm429_firmware sxr1130_firmware sxr1130 msm8909w apq8053_firmware nicobar msm8920 msm8953 sdm450 sdm636_firmware apq8098_firmware msm8998_firmware qcm2150 msm8920_firmware sdm630 sdm660 sm8250_firmware sdm710 qm215 sdm710_firmware msm8937 sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware rennell sdm630_firmware rennell_firmware qm215_firmware msm8940 apq8053 apq8096au_firmware msm8953_firmware saipan_firmware msm8917_firmware sm6150_firmware msm8998 sm8150 sm8250 nicobar_firmware saipan sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-787

Out-of-bounds Write

CVE-2020-3610

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.95%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

Possibility of double free of the drawobj that is added to the drawqueue array of the context during IOCTL commands as there is no refcount taken for this object in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8953, MSM8996AU, Nicobar, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 sdm429 sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x sdm670_firmware sdx24_firmware sdm636 sda845_firmware sa415m apq8098 qcs605 sdm429_firmware sda660 sdx55_firmware apq8009 msm8909w apq8053_firmware sda845 nicobar msm8953 sdm450 sdm636_firmware apq8098_firmware sdx20 sdm660 sdm630 sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 sdm710 qm215 sdm710_firmware sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8953_firmware apq8053 apq8096au_firmware saipan_firmware sm6150_firmware msm8917_firmware sm8250 sm8150 sdx20_firmware nicobar_firmware saipan sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-415

Double Free

CVE-2020-3684

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.08% / 23.00%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware kamorta_firmware qcs610 sdm845 sdx24 qcs404_firmware mdm9650 sm7150_firmware sm6150 agatti_firmware sm7150 qca6390_firmware apq8009_firmware sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware qcs404 sdx24_firmware sdm636 sda845_firmware sa415m bitra apq8098 ipq6018_firmware mdm9205 mdm9206_firmware sa515m qcs605 bitra_firmware mdm9650_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 apq8009 agatti sda845 nicobar sdm850_firmware sa6155p_firmware sdm636_firmware sa515m_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 sa8155p_firmware sc7180_firmware sdm710 mdm9607 sdm710_firmware sa6155p qcs610_firmware mdm9150 msm8905 ipq6018 sm8150_firmware sxr2130_firmware qcs405_firmware rennell sc7180 sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware qca6390 sdx55 saipan_firmware sm6150_firmware sa8155p sm8250 msm8998 sm8150 sdx20_firmware sdm850 kamorta saipan nicobar_firmware sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CVE-2020-3624

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 16.80%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'A potential buffer overflow exists due to integer overflow when parsing handler options due to wrong data type usage in operation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware kamorta_firmware mdm9635m_firmware mdm9640_firmware qcm2150_firmware qcs610 sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au mdm9645 sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware sa415m mdm9635m apq8098 qcn7605 mdm9615 mdm9205 mdm9206_firmware sa515m qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 msm8909_firmware apq8053_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware sa515m_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sdm660 mdm9655_firmware sc8180x_firmware sa415m_firmware sdm710 qm215 sc7180_firmware mdm9607 mdm9645_firmware apq8017_firmware mdm9625_firmware sdm710_firmware qcn7605_firmware qcs610_firmware mdm9150 msm8937 mdm9207c_firmware msm8905 mdm9207c sm8150_firmware msm8909 mdm9655 apq8096au sdm439_firmware rennell sc7180 sdm630_firmware mdm9205_firmware sda660_firmware mdm9625 rennell_firmware qm215_firmware sdx55 msm8953_firmware msm8940 saipan_firmware sm6150_firmware apq8053 msm8917_firmware apq8096au_firmware msm8998 sm8150 sdx20_firmware sdm850 mdm9615_firmware kamorta apq8017 saipan nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-190

Integer Overflow or Wraparound

CVE-2020-3690

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

CVE-2020-3625

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

When making query to DSP capabilities, Stack out of bounds occurs due to wrong buffer length configured for DSP attributes in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sm8250 sxr2130 sm8250_firmware sxr2130_firmware Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-3701

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.10% / 26.81%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-04 Aug, 2024 | 07:44

Use after free issue while processing error notification from camx driver due to not properly releasing the sequence data in Snapdragon Mobile in Saipan, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-saipan_firmware sm8250 sxr2130_firmware saipan sxr2130 sm8250_firmware Snapdragon Mobile

CWE ID-CWE-416

Use After Free

CVE-2020-3648

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.10% / 28.15%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Possible out of bound write in DSP driver code due to lack of check of data received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W

Vendor-Qualcomm Technologies, Inc.

Product-msm8909w_firmware msm8909w Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CVE-2024-49834

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.88%

7 Day CHG~0.00%

Published-03 Feb, 2025 | 16:51

Updated-05 Feb, 2025 | 16:02

Improper Validation of Array Index in Camera

Memory corruption while power-up or power-down sequence of the camera sensor.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2024-49843

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.88%

7 Day CHG~0.00%

Published-03 Feb, 2025 | 16:51

Updated-05 Feb, 2025 | 16:02

Improper Validation of Array Index in Graphics_Linux

Memory corruption while processing IOCTL from user space to handle GPU AHB bus error.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_7800_firmware sm4635 wsa8840 wcn7860 sm7675 wsa8845h_firmware wcn7881_firmware video_collaboration_vc1_platform_firmware wsa8845 qcm6125 wcn7881 wcn6650_firmware wcd9380_firmware sxr2330p wcn6450 qca6391_firmware wcn3950_firmware qca6391 sm8750 sm8635p wcn6650 video_collaboration_vc5_platform wcn3980 wcd9370_firmware sm8635p_firmware snapdragon_480_5g_mobile wcn3950 snapdragon_w5\+_gen_1_wearable sw5100 wsa8845_firmware wcd9370 qcs7230_firmware wcd9378 sw5100p_firmware sm7675_firmware wcn6755_firmware video_collaboration_vc5_platform_firmware sm7635_firmware sm8750p wsa8835 sm8750p_firmware wsa8845h snapdragon_480_5g_mobile_firmware fastconnect_7800 wcn6450_firmware snapdragon_4_gen_1_mobile qcs8250_firmware snapdragon_695_5g_mobile wcn7880_firmware wcn3988 wcn7880 wcd9395_firmware sm4635_firmware qcm6125_firmware wcd9378_firmware qcs6125 sm7635 qcs7230 sm7675p sw5100_firmware wcn3988_firmware sm6650_firmware qcs8250 wcd9375_firmware sm7675p_firmware wsa8810_firmware wcd9385_firmware wsa8810 wsa8832 wcd9390_firmware sm8635 snapdragon_695_5g_mobile_firmware snapdragon_8_gen_3_mobile_firmware wcd9375 sm8635_firmware snapdragon_8_gen_3_mobile sm6650 wsa8815 qcs6125_firmware snapdragon_w5\+_gen_1_wearable_firmware fastconnect_6200_firmware wcn7861 sm8750_firmware wcd9380 wsa8830 snapdragon_480\+_5g_mobile_firmware snapdragon_480\+_5g_mobile wsa8815_firmware wsa8832_firmware wcn7861_firmware wcn7860_firmware sw5100p fastconnect_6200 wsa8830_firmware wcn6755 wcn3980_firmware video_collaboration_vc1_platform snapdragon_4_gen_1_mobile_firmware wcd9390 wcd9385 wsa8840_firmware wcd9395 wsa8835_firmware sxr2330p_firmware Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2020-3647

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.16% / 36.46%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Potential buffer overflow when accessing npu debugfs node "off"/"log" with large buffer size' in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, QCS405, SC8180X, SDX55, SM6150, SM7150, SM8150

Vendor-Qualcomm Technologies, Inc.

Product-qcs405 sm7150_firmware sm6150_firmware sm6150 sdx55 mdm9607 sm8150_firmware sm8150 qcs405_firmware sdx55_firmware sm7150 mdm9607_firmware sc8180x sc8180x_firmware Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-787

Out-of-bounds Write

CVE-2020-3638

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.15%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:37

u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CVE-2020-3630

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.95%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

Possibility of out of bound access while processing the responses from video firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8917, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, Saipan, SC8180X, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware kamorta_firmware qcm2150_firmware mdm9640_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sa415m apq8098 mdm9206_firmware qcs605 sdm429_firmware mdm9650_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 apq8053_firmware nicobar sa6155p_firmware msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 sdm660 sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware sa415m_firmware qcs405 sdm710 qm215 mdm9607 sdm710_firmware sa6155p mdm9150 mdm9207c_firmware msm8996_firmware mdm9207c sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware qcs405_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8953_firmware apq8053 saipan_firmware sm6150_firmware apq8096au_firmware msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware kamorta msm8996 saipan nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2020-3678

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.13% / 32.23%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-kamorta_firmware sdm670_firmware qcs404 sda845_firmware sdm845 agatti qcs605 qcs404_firmware sdm710 agatti_firmware sdm710_firmware sxr1130_firmware kamorta sxr1130 sdm670 qcs605_firmware sda845 sdm845_firmware Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-3676

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.13% / 32.46%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:44

Possible memory corruption in perfservice due to improper validation array length taken from user application. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, APQ8098, Kamorta, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3646

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 16.80%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Buffer overflow seen as the destination buffer size is lesser than the source buffer size in video application' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Bitra, MSM8909W, QCM2150, QCS405, QCS605, Saipan, SC8180X, SDA845, SDM429W, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-3622

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 15.53%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware mdm9640_firmware qcs610 sdm632 sdm450_firmware qcs404_firmware mdm9650 mdm9645 apq8009_firmware msm8917 sdm670 qcs605_firmware sda845_firmware sa415m bitra apq8098 qcn7605 mdm9206_firmware bitra_firmware msm8905_firmware sda660 sdx55_firmware qca8081_firmware sxr1130 apq8053_firmware sda845 sa6155p_firmware sdm450 sdm636_firmware apq8098_firmware msm8998_firmware sdm630 mdm9607_firmware sm8250_firmware mdm9655_firmware sa415m_firmware qcs405 qm215 sc7180_firmware apq8017_firmware sdm710_firmware sa6155p qca8081 msm8937 msm8905 sm8150_firmware msm8909 sxr2130_firmware mdm9655 rennell sc7180 msm8953_firmware saipan_firmware sm6150_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware sdm850 kamorta apq8017 msm8996 saipan mdm9640 kamorta_firmware qcm2150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdx24 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8996au sdm429w_firmware sm7150 sxr2130 sc8180x mdm9206 sdm670_firmware qcs404 sdx24_firmware ipq8074 sdm636 ipq6018_firmware mdm9205 qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware sxr1130_firmware apq8009 msm8909_firmware nicobar sdm850_firmware msm8920 msm8953 sdx20 qcm2150 sdm660 msm8920_firmware sc8180x_firmware ipq8074_firmware sdm710 mdm9607 mdm9645_firmware qcn7605_firmware qcs610_firmware mdm9150 msm8996_firmware ipq6018 apq8096au sdm439_firmware qcs405_firmware sdm630_firmware mdm9205_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8940 apq8053 sm8250 apq8096au_firmware nicobar_firmware sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-787

Out-of-bounds Write

CVE-2020-3629

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.95%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Stack out of bound issue occurs when making query to DSP capabilities due to wrong assumption was made on determining the buffer size for the DSP attributes' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Bitra, Kamorta, Rennell, SC7180, SDM845, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-3666

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:44

u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-qca9377_firmware qcn5500 mdm9640_firmware qca9980_firmware msm8996au_firmware sdm845 sdx24 qca9563_firmware qcs404_firmware mdm9650 qca9558 qca9558_firmware qca6574 msm8996au qca9880_firmware apq8009_firmware sdm670 qcs605_firmware ipq4019_firmware mdm9206 qca9379_firmware qca6174a sdm670_firmware qcs404 sdx24_firmware qca6584au_firmware ipq8074 sdm636 sda845_firmware qca9377 apq8098 ipq6018_firmware mdm9206_firmware qca9563 qca6574_firmware qca9886 qcn5502_firmware qcs605 mdm9650_firmware qca6574au_firmware ipq8064 sxr1130_firmware qca8081_firmware sxr1130 apq8009 apq8053_firmware ipq8064_firmware sda845 sdm850_firmware qca6584au sa6155p_firmware sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 sdm630 mdm9607_firmware qcn5502 qcs405 qca9531 ipq8074_firmware qca6574au sdm710 mdm9607 qca9980 apq8017_firmware sdm710_firmware qca9880 sa6155p qcn5500_firmware qca8081 mdm9207c_firmware ipq6018 mdm9207c qca6174a_firmware qca9886_firmware apq8096au qcs405_firmware sdm630_firmware ipq4019 apq8053 apq8096au_firmware msm8998 sdx20_firmware sdm850 qca9531_firmware apq8017 qca9379 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-787

Out-of-bounds Write

CVE-2020-3696

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 13.38%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'Use after free while installing new security rule in ipcrtr as old one is deleted and this rule could still be in use for checking security permission for particular process' in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909W, MSM8996AU, QCA4531, QCA6574AU, QCA9531, QCM2150, QCS605, SDM429W, SDX20, SDX24

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

CVE-2020-3640

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 26.41%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-131

Incorrect Calculation of Buffer Size

CVE-2020-3618

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

NULL exception due to accessing bad pointer while posting events on RT FIFO in Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, QCA8081, SC8180X, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-ipq6018 ipq8074_firmware sxr2130_firmware ipq8074 qca8081_firmware ipq6018_firmware qca8081 sxr2130 sc8180x sc8180x_firmware Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-416

Use After Free

CVE-2020-3611

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.95%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130

Vendor-Qualcomm Technologies, Inc.

CVE-2020-3656

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-09 Sep, 2020 | 06:25

Updated-04 Aug, 2024 | 07:44

Out of bound access can happen in MHI command process due to lack of check of command channel id value received from MHI devices in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCM2150, QCS405, QCS605, QM215, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2020-3613

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.10% / 28.03%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:37

Double free issue in kernel memory mapping due to lack of memory protection mechanism in Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music in SM8150

Vendor-Qualcomm Technologies, Inc.

Product-sm8150 sm8150_firmware Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music

CWE ID-CWE-415

Double Free

CVE-2020-3642

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 25.51%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:37

Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon Mobile in Kamorta, QCS605, Rennell, Saipan, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-416

Use After Free

CVE-2020-3623

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-02 Jun, 2020 | 15:05

Updated-04 Aug, 2024 | 07:37

kernel failure due to load failures while running v1 path directly via kernel in Snapdragon Mobile in SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sm8250 sxr2130 sm8250_firmware sxr2130_firmware Snapdragon Mobile

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3626

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 10.70%

7 Day CHG~0.00%

Published-22 Jun, 2020 | 07:10

Updated-04 Aug, 2024 | 07:37

Any application can bind to it and exercise the APIs due to no protection for AIDL uimlpaservice in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8905, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCA6574AU, QCS605, QM215, Rennell, Saipan, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdm439 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 msm8917 sdm670 sxr2130 qcs605_firmware sdm670_firmware sdm636 apq8098 qcs605 msm8937_firmware sdm429_firmware msm8905_firmware qca6574au_firmware sda660 sxr1130_firmware sxr1130 msm8909w apq8053_firmware nicobar msm8920 msm8953 sdm450 sdm636_firmware apq8098_firmware msm8998_firmware sdm660 msm8920_firmware sdm630 sm8250_firmware qca6574au sdm710 qm215 sdm710_firmware msm8937 msm8905 sm8150_firmware sxr2130_firmware apq8096au sdm439_firmware rennell sdm630_firmware sda660_firmware rennell_firmware qm215_firmware msm8940 apq8053 apq8096au_firmware msm8953_firmware saipan_firmware msm8917_firmware sm6150_firmware msm8998 sm8150 sm8250 nicobar_firmware saipan sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-276

Incorrect Default Permissions

CVE-2020-3694

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 14.67%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'Use out of range pointer issue can occur due to incorrect buffer range check during the execution of qseecom' in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music in Bitra, Nicobar, Saipan, SM6150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-sxr2130 saipan_firmware sm6150_firmware sm6150 sm8250 bitra_firmware sm8150_firmware sm8150 sxr2130_firmware bitra nicobar_firmware saipan sm8250_firmware nicobar Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music

CVE-2020-3693

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.05% / 14.67%

7 Day CHG~0.00%

Published-02 Nov, 2020 | 06:21

Updated-04 Aug, 2024 | 07:44

u'Use out of range pointer issue can occur due to incorrect buffer range check during the execution of qseecom.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8098, Bitra, MSM8909W, MSM8996AU, Nicobar, QCM2150, QCS605, Saipan, SDM429W, SDX20, SM6150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2020-3636

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.95%

7 Day CHG~0.00%

Published-08 Sep, 2020 | 09:31

Updated-04 Aug, 2024 | 07:37

u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CVE-2024-49842

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.06% / 17.84%

7 Day CHG+0.04%

Published-06 May, 2025 | 08:32

Updated-26 Feb, 2026 | 18:28

Improper Access Control in Hypervisor

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-284

Improper Access Control

CVE-2024-49832

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.88%

7 Day CHG~0.00%

Published-03 Feb, 2025 | 16:51

Updated-05 Feb, 2025 | 16:01

Improper Validation of Array Index in Camera

Memory corruption in Camera due to unusually high number of nodes passed to AXI port.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2024-49833

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.88%

7 Day CHG~0.00%

Published-03 Feb, 2025 | 16:51

Updated-05 Feb, 2025 | 16:01

Improper Validation of Array Index in Camera

Memory corruption can occur in the camera when an invalid CID is used.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_7800_firmware sa7255p snapdragon_ar2_gen_1 wcn7860 qamsrv1m wcn7881_firmware qcs8550_firmware wcn7881 sa7775p_firmware sa8775p ssg2125p_firmware qam8775p sa8650p_firmware wcn3950_firmware sm8750 wcn6650 sa8255p wcd9370_firmware wcn3950 video_collaboration_vc3_platform_firmware sxr2230p wsa8845_firmware qcm8550_firmware snapdragon_8\+_gen_2_mobile wcn6755_firmware sxr2230p_firmware sm7635_firmware sd_8_gen1_5g_firmware wsa8845h ssg2115p_firmware wcn6450_firmware qcm8550 sa8650p sa8770p_firmware talynplus wcn3988 qca6698aq_firmware wcn7880_firmware wcd9395_firmware qamsrv1m_firmware sa8775p_firmware sm7635 talynplus_firmware wsa8835_firmware fastconnect_6900 wcn3988_firmware qcm4490 wcd9375_firmware wcd9385_firmware qam8650p_firmware wsa8810 snapdragon_8_gen_3_mobile_firmware qam8255p_firmware wcd9375 sa8620p_firmware sm6650 sa7255p_firmware qca6595_firmware sg8275p qamsrv1h wcn6740 wcd9380 video_collaboration_vc3_platform qamsrv1h_firmware wsa8832_firmware wcn7861_firmware snapdragon_4_gen_2_mobile wsa8830_firmware wcn6755 snapdragon_8_gen_2_mobile_firmware qca6595au_firmware qcs6490_firmware wcd9385 sa8255p_firmware wsa8840_firmware qca6595au qam8255p sxr2250p_firmware wsa8840 srv1h sm8550p_firmware sm7675 qca6595 wsa8845h_firmware qam8650p wsa8845 snapdragon_ar2_gen_1_firmware wcn6650_firmware sxr1230p_firmware sxr2330p wcd9380_firmware wcn6450 srv1m qam8775p_firmware sm8635p snapdragon_ar1_gen_1 sm8635p_firmware qcs4490 wcd9370 wcd9378 sm7675_firmware qcs4490_firmware sm8750p sa9000p snapdragon_4_gen_2_mobile_firmware wsa8835 sm8750p_firmware ssg2125p qca6678aq fastconnect_7800 qca6797aq_firmware snapdragon_8_gen_1_mobile snapdragon_8_gen_2_mobile wcn7880 wcd9378_firmware qca6797aq qcm4490_firmware sm7675p qcs8550 sxr2250p sm6650_firmware fastconnect_6700 snapdragon_8_gen_1_mobile_firmware sd_8_gen1_5g sm7675p_firmware snapdragon_ar1_gen_1_firmware wsa8810_firmware srv1m_firmware wsa8832 fastconnect_6700_firmware wcd9390_firmware sm8635 ssg2115p sm8635_firmware snapdragon_8_gen_3_mobile wsa8815 sxr1230p wcn7861 sa8620p sm8750_firmware wsa8830 wsa8815_firmware snapdragon_8\+_gen_2_mobile_firmware snapdragon_8\+_gen_1_mobile_firmware sa8770p wcn7860_firmware sg8275p_firmware srv1h_firmware qca6678aq_firmware qca6698aq fastconnect_6900_firmware qcs6490 sa9000p_firmware sm8550p snapdragon_8\+_gen_1_mobile wcd9390 sa7775p wcd9395 wcn6740_firmware sxr2330p_firmware Snapdragon

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2025-47314

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.02% / 5.32%

7 Day CHG~0.00%

Published-24 Sep, 2025 | 15:33

Updated-26 Feb, 2026 | 17:48

Improper Input Validation in Automotive Software platform based on QNX

Memory corruption while processing data sent by FE driver.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-20

Improper Input Validation

CVE-2024-23369

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.08% / 24.11%

7 Day CHG+0.02%

Published-07 Oct, 2024 | 12:58

Updated-11 Aug, 2025 | 15:06

Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2024-23356

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.15% / 35.91%

7 Day CHG~0.00%

Published-05 Aug, 2024 | 14:21

Updated-26 Nov, 2024 | 16:40

Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption during session sign renewal request calls in HLOS.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-787

Out-of-bounds Write

CVE-2024-23368

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.11% / 29.68%

7 Day CHG~0.00%

Published-01 Jul, 2024 | 14:17

Updated-01 Aug, 2024 | 23:06

Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC

Memory corruption when allocating and accessing an entry in an SMEM partition.

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2019-14002

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 6.58%

7 Day CHG~0.00%

Published-07 Feb, 2020 | 05:00

Updated-05 Aug, 2024 | 00:05

APKs without proper permission may bind to CallEnhancementService and can lead to unauthorized access to call status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCA6574AU, QCS605, QM215, SA6155P, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SM6150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-276

Incorrect Default Permissions

CVE-2019-14023

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-05 Aug, 2024 | 00:05

String format issue will occur while processing HLOS data as there is no user input validation to ensure inputs are properly NULL terminated before string copy in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, Rennell, SA6155P, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

CVE-2019-14037

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.10% / 26.81%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-05 Aug, 2024 | 00:05

Close and bind operations done on a socket can lead to a Use-After-Free condition. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8996, MSM8996AU, QCN7605, QCN7606, QCS605, SC8180X, SDA660, SDA845, SDM439, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM8150, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9640_firmware sdm636_firmware sdm845_firmware msm8996au_firmware apq8098_firmware sdm845 sdx20 sdm660 sdx24 sdm439 mdm9607_firmware qcn7606_firmware mdm9650 sc8180x_firmware sdm630 sdm710 msm8909w_firmware mdm9607 msm8996au sdm710_firmware apq8009_firmware qcn7605_firmware msm8909w sdm670 qcs605_firmware mdm9207c_firmware msm8996_firmware sc8180x mdm9206 msm8905 mdm9207c sdm670_firmware sm8150_firmware sdx24_firmware apq8096au sdm439_firmware sda845_firmware sdm636 sdm630_firmware apq8098 qcn7605 sda660_firmware mdm9206_firmware qcs605 sdx55 apq8053 apq8096au_firmware mdm9650_firmware sm8150 sdx20_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware msm8996 sxr1130 apq8009 apq8053_firmware sdm660_firmware sda845 qcn7606 mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CWE ID-CWE-416

Use After Free

CVE-2019-14021

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-16 Apr, 2020 | 10:46

Updated-05 Aug, 2024 | 00:05

Possible buffer overrun when processing EFS filename and payload sent over diag interface due to lack of check for filename length and payload size received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8096AU, APQ8098, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware qcm2150_firmware mdm9640_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 msm8917 sdm670 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sdm636 sda845_firmware apq8098 mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware msm8905_firmware sda660 sdx55_firmware sxr1130_firmware sxr1130 msm8909w msm8909_firmware sda845 nicobar sdm850_firmware msm8920 msm8953 sdm450 sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware qcm2150 msm8920_firmware sdm630 mdm9607_firmware sdm660 sc8180x_firmware sdm710 qm215 sc7180_firmware mdm9607 sdm710_firmware mdm9150 msm8937 msm8905 sm8150_firmware msm8909 apq8096au sdm439_firmware rennell sc7180 sdm630_firmware sda660_firmware rennell_firmware qm215_firmware sdx55 msm8953_firmware msm8940 sm6150_firmware apq8096au_firmware msm8917_firmware msm8998 sm8150 sdx20_firmware sdm850 nicobar_firmware sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2019-14060

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-07 Feb, 2020 | 05:00

Updated-05 Aug, 2024 | 00:05

Uninitialized stack data gets used If memory is not allocated for blob or if the allocated blob is less than the struct size required due to lack of check of return value for read or write blob in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9150_firmware sdm429w msm8996au_firmware sdm632_firmware sdm845 sdm450_firmware sdm632 sdx24 sdm439 mdm9650 sdm429 msm8940_firmware sm7150_firmware sm6150 msm8909w_firmware msm8996au sdm429w_firmware sm7150 apq8009_firmware msm8917 sdm670 sxr2130 qcs605_firmware sc8180x ipq4019_firmware mdm9206 sdm670_firmware sdx24_firmware ipq8074 sdm636 sda845_firmware apq8098 ipq6018_firmware mdm9206_firmware qcs605 msm8937_firmware mdm9650_firmware sdm429_firmware ipq8064 sdx55_firmware sxr1130_firmware sxr1130 msm8909w apq8009 apq8053_firmware ipq8064_firmware sda845 nicobar sa6155p_firmware msm8920 msm8953 sdm450 sdm636_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 msm8920_firmware sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware qcs405 ipq8074_firmware sdm710 qm215 mdm9607 apq8017_firmware sdm710_firmware sa6155p mdm9150 msm8937 mdm9207c_firmware ipq6018 mdm9207c sm8150_firmware sxr2130_firmware sdm439_firmware qcs405_firmware rennell sdm630_firmware rennell_firmware qm215_firmware ipq4019 sdx55 msm8953_firmware msm8940 saipan_firmware sm6150_firmware apq8053 msm8917_firmware sm8250 msm8998 sm8150 sdx20_firmware apq8017 saipan nicobar_firmware sdm660_firmware sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-824

Access of Uninitialized Pointer

CVE-2019-14026

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 10.01%

7 Day CHG~0.00%

Published-05 Mar, 2020 | 08:56

Updated-05 Aug, 2024 | 00:05

Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-qca9377_firmware apq8096_firmware mdm9640_firmware msm8996au_firmware sdm845 apq8096 sdx24 qcs404_firmware mdm9650 sm7150_firmware sm6150 qca6574 msm8996au sm7150 apq8009_firmware sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 qca9379_firmware qca6174a sdm670_firmware qcs404 sdx24_firmware qca6584au_firmware ipq8074 sdm636 sda845_firmware qca9377 apq8098 qcn7605 ipq6018_firmware mdm9206_firmware qca6574_firmware qca9886 qcs605 mdm9650_firmware qca6574au_firmware sda660 sxr1130_firmware qca8081_firmware sxr1130 apq8009 apq8053_firmware sda845 nicobar sdm850_firmware qca6584au sa6155p_firmware sdm636_firmware sdm845_firmware apq8098_firmware sdx20 msm8998_firmware sdm660 sdm630 mdm9607_firmware sm8250_firmware sc8180x_firmware qcs405 ipq8074_firmware qca6574au sdm710 mdm9607 apq8017_firmware sdm710_firmware qcn7605_firmware sa6155p qca8081 mdm9207c_firmware ipq6018 mdm9207c qca6174a_firmware qca9886_firmware sm8150_firmware sxr2130_firmware apq8096au qcs405_firmware rennell sdm630_firmware sda660_firmware rennell_firmware apq8053 sm6150_firmware apq8096au_firmware sm8250 msm8998 sm8150 sdx20_firmware sdm850 apq8017 nicobar_firmware qca9379 sdm660_firmware mdm9640 Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2019-14032

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.09% / 25.51%

7 Day CHG~0.00%

Published-05 Mar, 2020 | 08:56

Updated-05 Aug, 2024 | 00:05

Memory use after free issue in audio due to lack of resource control in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, Nicobar, QCS405, QCS605, Rennell, SA6155P, Saipan, SC8180X, SDA845, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-mdm9640_firmware msm8996au_firmware sdm845 sdx24 mdm9650 sm7150_firmware sm6150 msm8909w_firmware msm8996au sm7150 apq8009_firmware sdm670 sxr2130 qcs605_firmware sc8180x mdm9206 sdm670_firmware sdx24_firmware sda845_firmware apq8098 mdm9206_firmware qcs605 mdm9640 mdm9650_firmware msm8905_firmware sxr1130_firmware sdx55_firmware sxr1130 msm8909w apq8009 apq8053_firmware sda845 nicobar sa6155p_firmware msm8953 apq8098_firmware sdx20 mdm9607_firmware sm8250_firmware sc8180x_firmware qcs405 sdm710 mdm9607 apq8017_firmware sdm710_firmware sa6155p mdm9207c_firmware msm8905 mdm9207c sm8150_firmware sxr2130_firmware apq8096au qcs405_firmware rennell rennell_firmware sdx55 msm8953_firmware apq8053 apq8096au_firmware saipan_firmware sm6150_firmware sm8250 sm8150 sdx20_firmware apq8017 nicobar_firmware saipan sdm845_firmware Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-416

Use After Free

CVE-2019-14036

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 10.01%

7 Day CHG~0.00%

Published-21 Jan, 2020 | 06:30

Updated-05 Aug, 2024 | 00:05

Possible buffer overflow issue in error processing due to improper validation of array index value in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8064, APQ8096AU, IPQ4019, IPQ8064, IPQ8074, MDM9607, MDM9615, MDM9640, MSM8996AU, QCN7605

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-129

Improper Validation of Array Index

CVE-2019-14009

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.03% / 9.35%

7 Day CHG~0.00%

Published-16 Apr, 2020 | 10:46

Updated-05 Aug, 2024 | 00:05

Out of bound memory access while processing TZ command handler due to improper input validation on response length received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, MDM9150, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, SDA660, SDA845, SDM630, SDM636, SDM660, SDM845, SDM850, SXR2130

Vendor-Qualcomm Technologies, Inc.

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2019-14123

Matching Score-8

Assigner-Qualcomm, Inc.

View Details

Matching Score-8

Assigner-Qualcomm, Inc.

CVSS Score-7.8||HIGH

EPSS-0.12% / 31.64%

7 Day CHG~0.00%

Published-30 Jul, 2020 | 11:40

Updated-05 Aug, 2024 | 00:12

Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Vendor-Qualcomm Technologies, Inc.

Product-kamorta_firmware qcs404 sxr2130_firmware rennell sc7180 rennell_firmware qcs404_firmware sm8250_firmware sdx55 sm7150_firmware sm6150_firmware sm8250 sm6150 sc7180_firmware kamorta sdx55_firmware sm7150 sxr2130 Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2025-59600

Credits

Buffer Over-read in Graphics

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs