CPE Details
Qualcomm Snapdragon 429 Mobile
-
2024-12-20
14h08 +00:00
14h08 +00:00
2024-12-20
14h08 +00:00
14h08 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:h:qualcomm:snapdragon_429_mobile:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
snapdragon_429_mobileVersion
-Related CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. | 7.8 |
Haute |
||
| Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE. | 7.5 |
Haute |
||
| Memory corruption while triggering commands in the PlayReady Trusted application. | 7.8 |
Haute |
||
| Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. | 7.8 |
Haute |
||
| Memory corruption while processing an IOCTL call to set mixer controls. | 7.8 |
Haute |
||
| Memory corruption can occur during context user dumps due to inadequate checks on buffer length. | 7.8 |
Haute |
||
| Memory corruption while sound model registration for voice activation with audio kernel driver. | 7.8 |
Haute |
||
| Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check. | 7.8 |
Haute |
||
| Memory corruption while acquire and update IOCTLs during IFE output resource ID validation. | 7.8 |
Haute |
||
| Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information. | 7.8 |
Haute |
||
| Memory corruption while prociesing command buffer buffer in OPE module. | 7.8 |
Haute |
||
| Memory corruption Camera kernel when large number of devices are attached through userspace. | 7.8 |
Haute |
||
| Memory corruption during array access in Camera kernel due to invalid index from invalid command data. | 7.8 |
Haute |
||
| Memory corruption may occur during IO configuration processing when the IO port count is invalid. | 7.8 |
Haute |
||
| Memory corruption due to improper bounds check while command handling in camera-kernel driver. | 7.8 |
Haute |
||
| Memory corruption while encoding JPEG format. | 7.8 |
Haute |
||
| Memory corruption during concurrent buffer access due to modification of the reference count. | 7.8 |
Haute |
||
| Memory corruption when blob structure is modified by user-space after kernel verification. | 7.8 |
Haute |
||
| Memory corruption during concurrent access to server info object due to incorrect reference count update. | 7.8 |
Haute |
||
| Memory corruption while handling schedule request in Camera Request Manager(CRM) due to invalid link count in the corresponding session. | 7.8 |
Haute |
||
| Memory corruption during concurrent access to server info object due to unprotected critical field. | 7.8 |
Haute |
||
| Memory corruption during concurrent SSR execution due to race condition on the global maps list. | 7.8 |
Haute |
||
| Memory corruption may occur while accessing a variable during extended back to back tests. | 7.8 |
Haute |
||
| Memory corruption while power-up or power-down sequence of the camera sensor. | 7.8 |
Haute |
||
| Memory corruption in Camera due to unusually high number of nodes passed to AXI port. | 7.8 |
Haute |
||
| Memory corruption may occour while generating test pattern due to negative indexing of display ID. | 7.8 |
Haute |
||
| Memory corruption while handling IOCTL call from user-space to set latency level. | 7.8 |
Haute |
||
| Memory corruption while taking a snapshot with hardware encoder due to unvalidated userspace buffer. | 7.8 |
Haute |
||
| Memory corruption while parsing the memory map info in IOCTL calls. | 7.8 |
Haute |
||
| Information disclosure while processing IO control commands. | 6.1 |
Moyen |
||
| Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem. | 7.5 |
Haute |
||
| Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU. | 7.5 |
Haute |
||
| Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. | 6.1 |
Moyen |
||
| Memory corruption when two threads try to map and unmap a single node simultaneously. | 8.4 |
Haute |
||
| Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine. | 7.8 |
Haute |
||
| Memory corruption when user provides data for FM HCI command control operations. | 7.8 |
Haute |
||
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | 7.5 |
Haute |
||
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | 9.1 |
Critique |
||
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | 6.1 |
Moyen |
||
| Information disclosure while parsing dts header atom in Video. | 6.8 |
Moyen |
||
| Memory corruption when there is failed unmap operation in GPU. | 8.4 |
Haute |
||
| Memory corruption while processing finish_sign command to pass a rsp buffer. | 8.4 |
Haute |
||
| Memory corruption in SPS Application while requesting for public key in sorter TA. | 8.4 |
Haute |
||
| Memory corruption in Audio while processing RT proxy port register driver. | 8.4 |
Haute |
