CPE Details
Qualcomm VIDEO COLLABORATION VC5 FIRMWARE -
-
2023-07-10
13h27 +00:00
13h27 +00:00
2023-08-29
09h33 +00:00
09h33 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:o:qualcomm:video_collaboration_vc5_firmware:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
video_collaboration_vc5_firmwareVersion
-Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. | 7.8 |
High |
||
| Memory corruption while reading the FW response from the shared queue. | 7.8 |
High |
||
| Transient DOS while parsing per STA profile in ML IE. | 7.5 |
High |
||
| Memory corruption while triggering commands in the PlayReady Trusted application. | 7.8 |
High |
||
| Transient DOS may occur while processing the country IE. | 7.5 |
High |
||
| Memory corruption in display driver while detaching a device. | 7.8 |
High |
||
| Memory corruption may occur while accessing a variable during extended back to back tests. | 7.8 |
High |
||
| Memory corruption may occur while validating ports and channels in Audio driver. | 7.8 |
High |
||
| Information disclosure while deriving keys for a session for any Widevine use case. | 5.5 |
Medium |
||
| Memory corruption during management frame processing due to mismatch in T2LM info element. | 9.8 |
Critical |
||
| Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise. | 7.8 |
High |
||
| Memory corruption while processing IOCTL call for getting group info. | 7.8 |
High |
||
| Memory corruption when two threads try to map and unmap a single node simultaneously. | 8.4 |
High |
||
| Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. | 7.5 |
High |
||
| Memory corruption when user provides data for FM HCI command control operations. | 7.8 |
High |
||
| Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | 7.5 |
High |
||
| Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | 7.5 |
High |
||
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | 7.5 |
High |
||
| Memory corruption when BTFM client sends new messages over Slimbus to ADSP. | 8.4 |
High |
||
| Memory corruption when Alternative Frequency offset value is set to 255. | 7.8 |
High |
||
| Memory corruption in Hypervisor when platform information mentioned is not aligned. | 9.3 |
Critical |
||
| Information disclosure in Video while parsing mp2 clip with invalid section length. | 8.2 |
High |
||
| Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked. | 7.8 |
High |
||
| Information disclosure while handling T2LM Action Frame in WLAN Host. | 7.5 |
High |
||
| Memory corruption when the IOCTL call is interrupted by a signal. | 8.4 |
High |
||
| Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions. | 8.4 |
High |
||
| Memory corruption when the payload received from firmware is not as per the expected protocol size. | 7.8 |
High |
||
| Memory corruption when IOMMU unmap of a GPU buffer fails in Linux. | 8.4 |
High |
||
| Memory corruption when there is failed unmap operation in GPU. | 8.4 |
High |
||
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. | 7.8 |
High |
||
| Memory corruption in SPS Application while requesting for public key in sorter TA. | 8.4 |
High |
||
| Memory corruption while processing MBSSID beacon containing several subelement IE. | 9.8 |
Critical |
||
| Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem. | 7.8 |
High |
||
| Memory corruption while invoking IOCTLs calls in Automotive Multimedia. | 8.4 |
High |
||
| Memory corruption while invoking HGSL IOCTL context create. | 8.4 |
High |
||
| Memory corruption in Audio while processing RT proxy port register driver. | 8.4 |
High |
||
| Memory corruption in Core Services while executing the command for removing a single event listener. | 9.3 |
Critical |
||
| Memory Corruption in WLAN HOST while fetching TX status information. | 7.8 |
High |
||
| Memory Corruption in Audio while allocating the ion buffer during the music playback. | 8.4 |
High |
||
| Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. | 7.8 |
High |
||
| Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. | 7.8 |
High |
