Vulnerabilities in Qualcomm, Inc.

2,934 results
Vexday analysis

Com 2.934 CVEs catalogadas, a Qualcomm apresenta um volume expressivo de vulnerabilidades, reflexo da amplitude de seu portfólio de chipsets e firmware embarcado. A taxa de exploração ativa — 12 entradas no catálogo KEV da CISA, ou 0,41% do total — está em linha com a média geral do catálogo, indicando que o risco de exploração confirmada não foge do padrão da indústria, embora 94 falhas de severidade crítica representem uma superfície de ataque relevante para equipes de segurança que dependem de componentes Qualcomm em ambientes móveis, automotivos ou de IoT. A CVE mais perigosa atualmente em exploração ativa, CVE-2020-11261, apresenta EPSS de 0,0177, sugerindo probabilidade de exploração adicional relativamente baixa no curto prazo, mas sua presença no KEV exige atenção imediata em qualquer inventário de ativos afetados. O surgimento de 49 novas CVEs nos últimos 90 dias e a disponibilidade de PoCs públicas para 3 vulnerabilidades reforçam a necessidade de ciclos contínuos de atualização de firmware e monitoramento ativo de patches liberados pelo fabricante.

CVE-2018-11264Possible buffer overflow in Ontario fingerprint code due to lack of input validation for the parameters coming into TZ from HLOS in SnapdragEPSS 0.2%CVE-2020-3694u'Use out of range pointer issue can occur due to incorrect buffer range check during the execution of qseecom' in Snapdragon Auto, SnapdragEPSS 0.2%CVE-2018-11931Improper access to HLOS is possible while transferring memory to CPZ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, SnapdrEPSS 0.2%CVE-2018-11853Lack of check on out of range for channels When processing channel list set command will lead to buffer flow in Snapdragon Mobile, SnapdragoEPSS 0.2%CVE-2019-2328Possible buffer overflow when number of channels passed is more than size of channel mapping array in Snapdragon Auto, Snapdragon Compute, SEPSS 0.2%CVE-2016-10451In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MEPSS 0.2%CVE-2018-11850Lack of check on remaining length parameter When processing scan start command will lead to buffer flow in Snapdragon Automobile, SnapdragonEPSS 0.2%CVE-2018-11859Buffer overwrite can happen in WLAN due to lack of validation of the input length in Snapdragon Mobile in version SD 845, SD 850.EPSS 0.2%CVE-2018-11849Lack of check on out of range of bssid parameter When processing scan start command will lead to buffer flow in Snapdragon Automobile, SnapdEPSS 0.2%CVE-2019-10499Improper validation of read and write index of tx and rx fifo`s before using for data copy from fifo can lead to out-of-bound access. in SnaEPSS 0.2%CVE-2018-11921Failure condition is not handled properly and the correct error code is not returned. It could cause unintended SUI behavior and create uninEPSS 0.2%CVE-2018-11821Possible integer overflow may happen in WLAN during memory allocation in Snapdragon Mobile, Snapdragon Wear in version IPQ8074, MDM9206, MDMEPSS 0.2%CVE-2017-18310ClientEnv exposes services 0-32 to HLOS in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MSM8909W, MSM8996AU, SD 210/EPSS 0.2%CVE-2018-11822A possible integer overflow may happen in WLAN during memory allocation in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660EPSS 0.2%CVE-2018-11854Lack of check of valid length of input parameter may cause buffer overwrite in WLAN in Snapdragon Mobile in version SD 835, SD 845, SD 850, EPSS 0.2%CVE-2017-18159In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-0EPSS 0.2%CVE-2017-18309A micro-core of QMP transportation may cause a macro-core to read from or write to arbitrary memory in Snapdragon Mobile in version SD 845, EPSS 0.2%CVE-2020-3623kernel failure due to load failures while running v1 path directly via kernel in Snapdragon Mobile in SM8250, SXR2130EPSS 0.2%CVE-2020-3613Double free issue in kernel memory mapping due to lack of memory protection mechanism in Snapdragon Compute, Snapdragon Mobile, Snapdragon VEPSS 0.2%CVE-2017-18305XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, SnapdragEPSS 0.2%