CPE Details
Qualcomm 215 Firmware
-
2019-11-26
14h35 +00:00
14h35 +00:00
2019-11-26
14h35 +00:00
14h35 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:o:qualcomm:215_firmware:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
215_firmwareVersion
-Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| Memory corruption may occur while validating ports and channels in Audio driver. | 7.8 |
High |
||
| While processing the authentication message in UE, improper authentication may lead to information disclosure. | 5.4 |
Medium |
||
| Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user. | 7.5 |
High |
||
| Memory corruption when Alternative Frequency offset value is set to 255. | 7.8 |
High |
||
| Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. | 7.5 |
High |
||
| Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE. | 7.5 |
High |
||
| The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it. | 7.8 |
High |
||
| Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message. | 7.8 |
High |
||
| Memory Corruption in Audio while allocating the ion buffer during the music playback. | 8.4 |
High |
||
| Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. | 7.8 |
High |
||
| Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. | 7.8 |
High |
||
| Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. | 9.8 |
Critical |
||
| Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. | 6.8 |
Medium |
||
| Buffer overflow can occur if invalid header tries to overwrite the existing buffer which fix size allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 820, SD 820A, SD 845 / SD 850, SDM439, SDM660, SDX20 | 7.8 |
High |
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.