Vulnerabilities (CVE)

Filtered by vendor Qualcomm Subscribe
Filtered by product Qcm4290
Total 434 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-35116 1 Qualcomm 226 Apq8009, Apq8009 Firmware, Apq8009w and 223 more 2024-11-21 6.6 MEDIUM 7.7 HIGH
APK can load a crafted model into the CDSP which can lead to a compromise of CDSP and other APK`s data executing there in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2021-35112 1 Qualcomm 214 Apq8009w, Apq8009w Firmware, Aqt1000 and 211 more 2024-11-21 7.2 HIGH 8.4 HIGH
A user with user level permission can access graphics protected region due to improper access control in register configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35106 1 Qualcomm 224 Aqt1000, Aqt1000 Firmware, Ar8031 and 221 more 2024-11-21 7.2 HIGH 7.8 HIGH
Possible out of bound read due to improper length calculation of WMI message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35105 1 Qualcomm 314 Apq8009w, Apq8009w Firmware, Apq8017 and 311 more 2024-11-21 7.2 HIGH 8.4 HIGH
Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35104 1 Qualcomm 352 Apq8009w, Apq8009w Firmware, Apq8017 and 349 more 2024-11-21 10.0 HIGH 9.8 CRITICAL
Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-35100 1 Qualcomm 240 Apq8009w, Apq8009w Firmware, Apq8017 and 237 more 2024-11-21 7.8 HIGH 7.5 HIGH
Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35098 1 Qualcomm 172 Apq8053, Apq8053 Firmware, Apq8096au and 169 more 2024-11-21 4.6 MEDIUM 6.7 MEDIUM
Improper validation of session id in PCM routing process can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35097 1 Qualcomm 258 Aqt1000, Aqt1000 Firmware, Ar8031 and 255 more 2024-11-21 N/A 7.3 HIGH
Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35094 1 Qualcomm 162 Aqt1000, Aqt1000 Firmware, Qca6390 and 159 more 2024-11-21 7.2 HIGH 7.8 HIGH
Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35088 1 Qualcomm 370 Aqt1000, Aqt1000 Firmware, Ar8035 and 367 more 2024-11-21 6.4 MEDIUM 8.2 HIGH
Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-35085 1 Qualcomm 140 Aqt1000, Aqt1000 Firmware, Ar8035 and 137 more 2024-11-21 3.6 LOW 5.5 MEDIUM
Possible buffer overflow due to lack of buffer length check during management frame Rx handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35084 1 Qualcomm 184 Aqt1000, Aqt1000 Firmware, Ar8031 and 181 more 2024-11-21 3.6 LOW 5.5 MEDIUM
Possible out of bound read due to lack of length check of data length for a DIAG event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CVE-2021-35083 1 Qualcomm 347 Apq8009, Apq8009 Firmware, Apq8009w and 344 more 2024-11-21 9.4 HIGH 8.2 HIGH
Possible out of bound read due to improper validation of certificate chain in SSL or Internet key exchange in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35081 1 Qualcomm 146 Aqt1000, Aqt1000 Firmware, Ar8035 and 143 more 2024-11-21 10.0 HIGH 9.8 CRITICAL
Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CVE-2021-35080 1 Qualcomm 50 Qcm2290, Qcm2290 Firmware, Qcm4290 and 47 more 2024-11-21 4.9 MEDIUM 6.5 MEDIUM
Disabled SMMU from secure side while RPM is assigned a secure stream can lead to information disclosure in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2021-35079 1 Qualcomm 122 Apq8053, Apq8053 Firmware, Aqt1000 and 119 more 2024-11-21 2.1 LOW 6.2 MEDIUM
Improper validation of permissions for third party application accessing Telephony service API can lead to information disclosure in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35078 1 Qualcomm 214 Aqt1000, Aqt1000 Firmware, Ar8035 and 211 more 2024-11-21 7.8 HIGH 7.5 HIGH
Possible memory leak due to improper validation of certificate chain length while parsing server certificate chain in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2021-35077 1 Qualcomm 142 Ar8035, Ar8035 Firmware, Qca6174a and 139 more 2024-11-21 7.2 HIGH 8.4 HIGH
Possible use after free scenario in compute offloads to DSP while multiple calls spawn a dynamic process in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35072 1 Qualcomm 164 Apq8009, Apq8009 Firmware, Apq8009w and 161 more 2024-11-21 7.2 HIGH 7.8 HIGH
Possible buffer overflow due to improper validation of array index while processing external DIAG command in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35071 1 Qualcomm 342 Aqt1000, Aqt1000 Firmware, Ar8035 and 339 more 2024-11-21 2.1 LOW 5.5 MEDIUM
Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking