Vulnerabilities (CVE)

Filtered by vendor Qualcomm Subscribe
Filtered by product Qcm6490
Total 370 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-35119 1 Qualcomm 165 Aqt1000, Aqt1000 Firmware, Ar8035 and 162 more 2024-02-28 2.1 LOW 5.5 MEDIUM
Potential out of Bounds read in FIPS event processing due to improper validation of the length from the firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-1942 1 Qualcomm 222 Aqt1000, Aqt1000 Firmware, Ar8031 and 219 more 2024-02-28 7.2 HIGH 8.8 HIGH
Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-30334 1 Qualcomm 262 Apq8009w, Apq8009w Firmware, Aqt1000 and 259 more 2024-02-28 7.2 HIGH 7.8 HIGH
Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-35090 1 Qualcomm 112 Aqt1000, Aqt1000 Firmware, Qca6390 and 109 more 2024-02-28 6.9 MEDIUM 7.8 HIGH
Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-30339 1 Qualcomm 110 Ar8035, Ar8035 Firmware, Qca6391 and 107 more 2024-02-28 4.9 MEDIUM 5.5 MEDIUM
Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-30344 1 Qualcomm 294 Apq8009w, Apq8009w Firmware, Apq8017 and 291 more 2024-02-28 7.8 HIGH 7.5 HIGH
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-30343 1 Qualcomm 128 Ar8035, Ar8035 Firmware, Qca6390 and 125 more 2024-02-28 7.1 HIGH 5.9 MEDIUM
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35076 1 Qualcomm 114 Ar8035, Ar8035 Firmware, Qca6390 and 111 more 2024-02-28 7.8 HIGH 7.5 HIGH
Possible null pointer dereference due to improper validation of RRC connection reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35086 1 Qualcomm 110 Ar8035, Ar8035 Firmware, Qca6390 and 107 more 2024-02-28 7.8 HIGH 7.5 HIGH
Possible buffer over read due to improper validation of SIB type when processing a NR system Information message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-30347 1 Qualcomm 128 Ar8035, Ar8035 Firmware, Qca6390 and 125 more 2024-02-28 9.3 HIGH 8.1 HIGH
Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-35071 1 Qualcomm 342 Aqt1000, Aqt1000 Firmware, Ar8035 and 339 more 2024-02-28 2.1 LOW 5.5 MEDIUM
Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-35106 1 Qualcomm 224 Aqt1000, Aqt1000 Firmware, Ar8031 and 221 more 2024-02-28 7.2 HIGH 7.8 HIGH
Possible out of bound read due to improper length calculation of WMI message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2022-22057 1 Qualcomm 160 Apq8053, Apq8053 Firmware, Ar8035 and 157 more 2024-02-28 7.2 HIGH 7.8 HIGH
Use after free in graphics fence due to a race condition while closing fence file descriptor and destroy graphics timeline simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2021-35126 1 Qualcomm 52 Qam8295p, Qam8295p Firmware, Qca6391 and 49 more 2024-02-28 7.2 HIGH 7.8 HIGH
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-30331 1 Qualcomm 154 Ar8035, Ar8035 Firmware, Fsm10055 and 151 more 2024-02-28 2.1 LOW 5.5 MEDIUM
Possible buffer overflow due to improper data validation of external commands sent via DIAG interface in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVE-2022-22071 1 Qualcomm 180 Apq8053, Apq8053 Firmware, Ar8031 and 177 more 2024-02-28 7.2 HIGH 7.8 HIGH
Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CVE-2021-35094 1 Qualcomm 162 Aqt1000, Aqt1000 Firmware, Qca6390 and 159 more 2024-02-28 7.2 HIGH 7.8 HIGH
Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVE-2021-30317 1 Qualcomm 228 Aqt1000, Aqt1000 Firmware, Ar8031 and 225 more 2024-02-28 7.2 HIGH 7.8 HIGH
Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CVE-2021-30341 1 Qualcomm 240 Apq8009w, Apq8009w Firmware, Apq8096au and 237 more 2024-02-28 10.0 HIGH 9.8 CRITICAL
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
CVE-2021-35120 1 Qualcomm 199 Apq8053, Apq8053 Firmware, Aqt1000 and 196 more 2024-02-28 4.6 MEDIUM 6.7 MEDIUM
Improper handling between export and release functions on the same handle from client can lead to use after free in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile