GCVE - cpe:2.3:h:qualcomm:sd820a:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:qualcomm:sd820a:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Qualcomm (`4194a0de-9926-556d-a143-7609c2315dd6`)
Product	Sd820A (`28bc779e-a679-5002-a074-1c00839523a4`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-5871`	not_vulnerable	2026-06-08 05:11:52.154679	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016, MAC address randomization performed during probe requests (for privacy reasons) is not done properly due to a flawed RNG which produces repeating output much earlier than expected. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T05:47:55.965Z Open on db.gcve.eu Reference links https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components https://www.qualcomm.com/company/product-security/bulletins	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-5837`	not_vulnerable	2026-06-08 05:11:52.014372	Details available In Snapdragon (Automobile, Mobile, Wear) in version IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016, MAC address randomization performed during probe requests is not done properly due to a flawed RNG which produced repeating output much earlier than expected. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T05:47:55.801Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins https://source.android.com/security/bulletin/2018-07-01#qualcomm-closed-source-components	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11292`	not_vulnerable	2026-06-08 05:10:38.300199	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA6574AU, QCA6584, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820A, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, Snapdragon_High_Med_2016, lack of input validation in WLANWMI command handlers can lead to integer & heap overflows. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.813Z Open on db.gcve.eu Reference links https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components https://www.qualcomm.com/company/product-security/bulletins http://support.blackberry.com/kb/articleDetail?language=en_US&articleNumber=000051618	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11291`	not_vulnerable	2026-06-08 05:10:38.296599	Details available In Snapdragon (Automobile, Mobile, Wear) in version IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9378, QCA9379, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDM630, SDM632, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, cryptographic issues due to the random number generator was not a strong one in NAN. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.821Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securityfocus.com/bid/107681	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11290`	not_vulnerable	2026-06-08 05:10:38.278570	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, QCA6584, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820A, SD 845, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, MAC address randomization performed during probe requests is not done properly due to a flawed RNG in use. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.881Z Open on db.gcve.eu Reference links https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components https://www.qualcomm.com/company/product-security/bulletins http://support.blackberry.com/kb/articleDetail?language=en_US&articleNumber=000051618	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11287`	not_vulnerable	2026-06-08 05:10:38.240062	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016, incorrect control flow implementation in Video while checking buffer sufficiency. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.972Z Open on db.gcve.eu Reference links https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components https://www.qualcomm.com/company/product-security/bulletins	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11285`	not_vulnerable	2026-06-08 05:10:38.237130	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, SDX20, Snapdragon_High_Med_2016, while parsing FLAC file with corrupted picture block, a buffer over-read can occur. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.839Z Open on db.gcve.eu Reference links https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components https://www.qualcomm.com/company/product-security/bulletins	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11277`	not_vulnerable	2026-06-08 05:10:38.207278	Details available In Snapdragon (Automobile, Mobile, Wear) in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SDA660, the com.qualcomm.embms is a vendor package deployed in the system image which has an inadequate permission level and allows any application installed from Play Store to request this permission at install-time. The system application interfaces with the Radio Interface Layer leading to potential access control issue. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.986Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11269`	not_vulnerable	2026-06-08 05:10:38.172564	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, SDX20, Snapdragon_High_Med_2016, a potential buffer overflow exists when parsing TFTP options. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.896Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securityfocus.com/bid/105838	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11268`	not_vulnerable	2026-06-08 05:10:38.165242	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, SDX20, Snapdragon_High_Med_2016, a potential buffer overflow exists when parsing TFTP options. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.864Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securityfocus.com/bid/106845	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-11267`	not_vulnerable	2026-06-08 05:10:38.148820	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9615, MDM9640, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, when sending an malformed XML data to deviceprogrammer/firehose it may do an out of bounds buffer write allowing a region of memory to be filled with 0x20. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T08:01:52.834Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securityfocus.com/bid/106128	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-18314`	not_vulnerable	2026-06-08 05:09:10.852239	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, Snapdragon_High_Med_2016, on TZ cold boot the CNOC_QDSS RG0 locked by xBL_SEC is cleared by TZ. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T21:20:50.354Z Open on db.gcve.eu Reference links https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components https://www.qualcomm.com/company/product-security/bulletins	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-18302`	not_vulnerable	2026-06-08 05:09:10.792238	Details available In Snapdragon (Automobile ,Mobile) in version MSM8996AU, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, Snapdragon_High_Med_2016, a crafted HLOS client can modify the structure in memory passed to a QSEE application between the time of check and the time of use, resulting in arbitrary writes to TZ kernel memory regions. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T21:20:51.029Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securitytracker.com/id/1041432 https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-components	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-18301`	not_vulnerable	2026-06-08 05:09:10.756350	Details available In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDM630, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, providing the NULL argument of ICE regulator while processing create key IOCTL results in system restart. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T21:20:51.126Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securitytracker.com/id/1041432 https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-components	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-18280`	not_vulnerable	2026-06-08 05:09:10.727404	Details available In Snapdragon (Automobile, Mobile, Wear) in version MDM9607, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SDM429, SDM439, SDM632, Snapdragon_High_Med_2016, when a Trusted Application has opened the SPI/I2C interface to a particular device, it is possible for another Trusted Application to read the data on this open interface by calling the SPI/I2C read function. Published: 2018-09-20T13:00:00.000Z Updated: 2024-08-05T21:13:49.271Z Open on db.gcve.eu Reference links https://www.qualcomm.com/company/product-security/bulletins http://www.securitytracker.com/id/1041432 https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-components	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.