Qualcomm PMI8998 Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:qualcomm:pmi8998_firmware:-:*:*:*:*:*:*:*
part: o version: - update: *
| Vendor | Qualcomm (4194a0de-9926-556d-a143-7609c2315dd6) |
|---|---|
| Product | Pmi8998 Firmware (c209bab6-7f80-53d3-ae9c-16a3b0e6c787) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-1927 |
vulnerable | 2026-06-03 14:43:38.566062 |
Details available
HIGH (8.4)
Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:43.000Z
Updated: 2024-08-03T16:25:06.469Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1925 |
vulnerable | 2026-06-03 14:43:38.471736 |
Details available
HIGH (7.5)
Possible denial of service scenario due to improper handling of group management action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:42.000Z
Updated: 2024-08-03T16:25:06.173Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1915 |
vulnerable | 2026-06-03 14:43:38.014588 |
Details available
HIGH (7.8)
Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:42.000Z
Updated: 2024-08-03T16:25:06.195Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1910 |
vulnerable | 2026-06-03 14:43:37.884334 |
Details available
HIGH (7.3)
Double free in video due to lack of input buffer length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-05-07T09:10:41.000Z
Updated: 2024-08-03T16:25:06.114Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1906 |
vulnerable | 2026-06-03 14:43:37.648659 |
Details available
MEDIUM (6.2)
Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-05-07T09:10:40.000Z
Updated: 2025-10-21T23:25:46.727Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1905 |
vulnerable | 2026-06-03 14:43:37.535945 |
Details available
HIGH (8.4)
Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-05-07T09:10:40.000Z
Updated: 2025-10-21T23:25:46.858Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1895 |
vulnerable | 2026-06-03 14:43:37.204950 |
Details available
MEDIUM (6.8)
Possible integer overflow due to improper length check while flashing an image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music
Published: 2021-05-07T09:10:39.000Z
Updated: 2024-08-03T16:25:06.225Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1892 |
vulnerable | 2026-06-03 14:43:37.107641 |
Details available
HIGH (8.4)
Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Wired Infrastructure and Networking
Published: 2021-04-07T07:55:36.000Z
Updated: 2024-08-03T16:25:06.439Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-1891 |
vulnerable | 2026-06-03 14:43:36.851712 |
Details available
HIGH (8.4)
A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:38.000Z
Updated: 2024-08-03T16:25:06.170Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-3664 |
vulnerable | 2026-06-03 14:42:46.785991 |
Details available
Out of bound read access in hypervisor due to an invalid read access attempt by passing invalid addresses in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:26:08.000Z
Updated: 2024-08-04T07:44:50.004Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11309 |
vulnerable | 2026-06-03 14:41:25.912707 |
Details available
Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:01:03.000Z
Updated: 2024-08-04T11:28:13.988Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11308 |
vulnerable | 2026-06-03 14:41:25.892276 |
Details available
Buffer overflow occurs when trying to convert ASCII string to Unicode string if the actual size is more than required in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
Published: 2021-03-17T06:01:02.000Z
Updated: 2024-08-04T11:28:13.887Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11299 |
vulnerable | 2026-06-03 14:41:24.934762 |
Details available
Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:01:01.000Z
Updated: 2024-08-04T11:28:13.819Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11296 |
vulnerable | 2026-06-03 14:41:09.632013 |
Details available
Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:26:06.000Z
Updated: 2024-08-04T11:28:13.857Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11294 |
vulnerable | 2026-06-03 14:41:09.601766 |
Details available
MEDIUM (5.9)
Out of bound write in logger due to prefix size is not validated while prepended to logging string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
Published: 2021-05-07T09:10:37.000Z
Updated: 2024-08-04T11:28:14.038Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11293 |
vulnerable | 2026-06-03 14:41:09.587267 |
Details available
MEDIUM (5.1)
Out of bound read can happen in Widevine TA while copying data to buffer from user data due to lack of check of buffer length received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:36.000Z
Updated: 2024-08-04T11:28:13.907Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11290 |
vulnerable | 2026-06-03 14:41:09.555241 |
Details available
Use after free condition in msm ioctl events due to race between the ioctl register and deregister events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
Published: 2021-03-17T06:01:00.000Z
Updated: 2024-08-04T11:28:13.851Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11289 |
vulnerable | 2026-06-03 14:41:09.534825 |
Details available
HIGH (7.8)
Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:36.000Z
Updated: 2024-08-04T11:28:13.857Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11288 |
vulnerable | 2026-06-03 14:41:09.513081 |
Details available
HIGH (7.8)
Out of bound write can occur in playready while processing command due to lack of input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
Published: 2021-05-07T09:10:35.000Z
Updated: 2024-08-04T11:28:13.799Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11285 |
vulnerable | 2026-06-03 14:41:09.381996 |
Details available
HIGH (8.2)
Buffer over-read while unpacking the RTCP packet we may read extra byte if wrong length is provided in RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-05-07T09:10:34.000Z
Updated: 2024-08-04T11:28:13.843Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11284 |
vulnerable | 2026-06-03 14:41:09.367648 |
Details available
HIGH (8.4)
Locked memory can be unlocked and modified by non secure boot loader through improper system call sequence making the memory region untrusted source of input for secure boot loader in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Published: 2021-05-07T09:10:34.000Z
Updated: 2024-08-04T11:28:13.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11280 |
vulnerable | 2026-06-03 14:41:08.327357 |
Details available
Denial of service while processing fine timing measurement request (FTMR) frame with reserved bits set in the FTM parameter IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:26:03.000Z
Updated: 2024-08-04T11:28:13.809Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11279 |
vulnerable | 2026-06-03 14:41:08.304139 |
Details available
HIGH (7.5)
Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-05-07T09:10:33.000Z
Updated: 2024-08-04T11:28:13.858Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11278 |
vulnerable | 2026-06-03 14:41:08.280062 |
Details available
Possible denial of service while handling host WMI command due to improper validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:26:02.000Z
Updated: 2024-08-04T11:28:13.796Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11276 |
vulnerable | 2026-06-03 14:41:08.246465 |
Details available
Possible buffer over read while processing P2P IE and NOA attribute of beacon and probe response frames due to improper validation of P2P IE and NOA attribute lengths in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:26:01.000Z
Updated: 2024-08-04T11:28:13.815Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11275 |
vulnerable | 2026-06-03 14:41:08.218824 |
Details available
Possible buffer over-read while parsing quiet IE in Rx beacon frame due to improper check of IE length in received beacon in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:26:00.000Z
Updated: 2024-08-04T11:28:13.848Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11274 |
vulnerable | 2026-06-03 14:41:08.196087 |
Details available
HIGH (7.5)
Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Published: 2021-05-07T09:10:32.000Z
Updated: 2024-08-04T11:28:13.849Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11273 |
vulnerable | 2026-06-03 14:41:08.183414 |
Details available
HIGH (7.5)
Histogram type KPI was teardown with the assumption of the existence of histogram binning info and will lead to null pointer access when histogram binning info is missing due to lack of null check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
Published: 2021-05-07T09:10:32.000Z
Updated: 2024-08-04T11:28:13.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11270 |
vulnerable | 2026-06-03 14:41:08.131665 |
Details available
Possible denial of service due to RTT responder consistently rejects all FTMR by transmitting FTM1 with failure status in the FTM parameter IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:25:58.000Z
Updated: 2024-08-04T11:28:13.840Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11269 |
vulnerable | 2026-06-03 14:41:08.037142 |
Details available
Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:25:57.000Z
Updated: 2024-08-04T11:28:13.880Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11262 |
vulnerable | 2026-06-03 14:41:07.609876 |
Details available
A race between command submission and destroying the context can cause an invalid context being added to the list leads to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-06-09T05:00:50.000Z
Updated: 2024-08-04T11:28:13.849Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11261 |
vulnerable | 2026-06-03 14:41:07.589645 |
Details available
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-06-09T05:00:49.000Z
Updated: 2025-10-21T23:25:42.737Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11255 |
vulnerable | 2026-06-03 14:41:07.486506 |
Details available
HIGH (7.5)
Denial of service while processing RTCP packets containing multiple SDES reports due to memory for last SDES packet is freed and rest of the memory is leaked in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables
Published: 2021-04-07T07:55:36.000Z
Updated: 2024-08-04T11:28:13.772Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11252 |
vulnerable | 2026-06-03 14:41:07.013396 |
Details available
HIGH (7.2)
Trustzone initialization code will disable xPU`s when memory dumps are enabled and lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-04-07T07:55:35.000Z
Updated: 2024-08-04T11:28:13.814Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11251 |
vulnerable | 2026-06-03 14:41:06.993365 |
Details available
HIGH (8.2)
Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-04-07T07:55:34.000Z
Updated: 2024-08-04T11:28:13.800Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11250 |
vulnerable | 2026-06-03 14:41:06.970534 |
Details available
Use after free due to race condition when reopening the device driver repeatedly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:45.000Z
Updated: 2024-08-04T11:28:13.827Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11247 |
vulnerable | 2026-06-03 14:41:06.952254 |
Details available
HIGH (8.2)
Out of bound memory read while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-04-07T07:55:34.000Z
Updated: 2024-08-04T11:28:13.769Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11246 |
vulnerable | 2026-06-03 14:41:06.935691 |
Details available
HIGH (8.4)
A double free condition can occur when the device moves to suspend mode during secure playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Published: 2021-04-07T07:55:33.000Z
Updated: 2024-08-04T11:28:13.859Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11245 |
vulnerable | 2026-06-03 14:41:06.921612 |
Details available
HIGH (8.4)
Unintended reads and writes by NS EL2 in access control driver due to lack of check of input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Published: 2021-04-07T07:55:32.000Z
Updated: 2024-08-04T11:28:13.879Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11241 |
vulnerable | 2026-06-03 14:41:06.623489 |
Details available
Out of bound read will happen if EAPOL Key length is less than expected while processing NAN shared key descriptor attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:44.000Z
Updated: 2024-08-04T11:28:13.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11240 |
vulnerable | 2026-06-03 14:41:06.602008 |
Details available
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-06-09T05:00:43.000Z
Updated: 2024-08-04T11:28:13.811Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11239 |
vulnerable | 2026-06-03 14:41:06.583445 |
Details available
Use after free issue when importing a DMA buffer by using the CPU address of the buffer due to attachment is not cleaned up properly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-06-09T05:00:43.000Z
Updated: 2024-08-04T11:28:13.448Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11238 |
vulnerable | 2026-06-03 14:41:06.492196 |
Details available
Possible Buffer over-read in ARP/NS parsing due to lack of check of packet length received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:42.000Z
Updated: 2024-08-04T11:28:13.795Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11235 |
vulnerable | 2026-06-03 14:41:06.342073 |
Details available
Buffer overflow might occur while parsing unified command due to lack of check of input data received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:41.000Z
Updated: 2024-08-04T11:28:13.379Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11234 |
vulnerable | 2026-06-03 14:41:06.252790 |
Details available
HIGH (8.4)
When sending a socket event message to a user application, invalid information will be passed if socket is freed by other thread resulting in a Use After Free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-04-07T07:55:29.000Z
Updated: 2024-08-04T11:28:13.531Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11228 |
vulnerable | 2026-06-03 14:41:05.948966 |
Details available
Part of RPM region was not protected from xblSec itself due to improper policy and leads to unprivileged access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Published: 2021-03-17T06:00:59.000Z
Updated: 2024-08-04T11:28:13.171Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11227 |
vulnerable | 2026-06-03 14:41:05.935487 |
Details available
Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:58.000Z
Updated: 2024-08-04T11:28:13.321Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11226 |
vulnerable | 2026-06-03 14:41:05.915538 |
Details available
Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:57.000Z
Updated: 2024-08-04T11:28:13.408Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11222 |
vulnerable | 2026-06-03 14:41:05.683274 |
Details available
Buffer over read while processing MT SMS with maximum length due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile
Published: 2021-03-17T06:00:56.000Z
Updated: 2024-08-04T11:28:13.283Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11221 |
vulnerable | 2026-06-03 14:41:05.666231 |
Details available
Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient checks in the syscall handler and leads to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-03-17T06:00:55.000Z
Updated: 2024-08-04T11:28:13.860Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11220 |
vulnerable | 2026-06-03 14:41:05.652291 |
Details available
While processing storage SCM commands there is a time of check or time of use window where a pointer used could be invalid at a specific time while executing the storage SCM call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Published: 2021-03-17T06:00:55.000Z
Updated: 2024-08-04T11:28:13.778Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11218 |
vulnerable | 2026-06-03 14:41:05.578358 |
Details available
Denial of service in baseband when NW configures LTE betaOffset-RI-Index due to lack of data validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Published: 2021-03-17T06:00:54.000Z
Updated: 2024-08-04T11:28:13.292Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11204 |
vulnerable | 2026-06-03 14:41:05.137372 |
Details available
Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:25:55.000Z
Updated: 2024-08-04T11:28:13.292Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11203 |
vulnerable | 2026-06-03 14:41:05.120252 |
Details available
Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
Published: 2021-02-22T06:25:55.000Z
Updated: 2024-08-04T11:28:13.372Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11199 |
vulnerable | 2026-06-03 14:41:04.907287 |
Details available
HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-03-17T06:00:53.000Z
Updated: 2024-08-04T11:28:13.290Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11198 |
vulnerable | 2026-06-03 14:41:04.888889 |
Details available
Key material used for TZ diag buffer encryption and other data related to log buffer is not wiped securely due to improper usage of memset in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:25:54.000Z
Updated: 2024-08-04T11:28:13.695Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11195 |
vulnerable | 2026-06-03 14:41:04.790807 |
Details available
Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
Published: 2021-02-22T06:25:54.000Z
Updated: 2024-08-04T11:28:13.437Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11192 |
vulnerable | 2026-06-03 14:41:04.574863 |
Details available
Out of bound write while parsing SDP string due to missing check on null termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:53.000Z
Updated: 2024-08-04T11:28:12.909Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11191 |
vulnerable | 2026-06-03 14:41:04.525266 |
Details available
HIGH (8.2)
Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-04-07T07:55:27.000Z
Updated: 2024-08-04T11:28:13.539Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11190 |
vulnerable | 2026-06-03 14:41:04.388322 |
Details available
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:52.000Z
Updated: 2024-08-04T11:28:13.623Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11189 |
vulnerable | 2026-06-03 14:41:04.261436 |
Details available
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:51.000Z
Updated: 2024-08-04T11:28:13.385Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11188 |
vulnerable | 2026-06-03 14:41:04.237712 |
Details available
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:50.000Z
Updated: 2024-08-04T11:28:13.812Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11182 |
vulnerable | 2026-06-03 14:41:04.102580 |
Details available
Possible heap overflow while parsing NAL header due to lack of check of length of data received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Published: 2021-06-09T05:00:40.000Z
Updated: 2024-08-04T11:28:13.303Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11178 |
vulnerable | 2026-06-03 14:41:03.970243 |
Details available
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:39.000Z
Updated: 2024-08-04T11:28:13.321Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11177 |
vulnerable | 2026-06-03 14:41:03.874495 |
Details available
User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-02-22T06:25:52.000Z
Updated: 2024-08-04T11:28:13.159Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11171 |
vulnerable | 2026-06-03 14:41:03.742055 |
Details available
Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:49.000Z
Updated: 2024-08-04T11:28:12.924Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11170 |
vulnerable | 2026-06-03 14:41:03.651704 |
Details available
Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Published: 2021-02-22T06:25:51.000Z
Updated: 2024-08-04T11:28:13.078Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11166 |
vulnerable | 2026-06-03 14:41:03.480817 |
Details available
Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Published: 2021-03-17T06:00:48.000Z
Updated: 2024-08-04T11:28:12.574Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11165 |
vulnerable | 2026-06-03 14:41:03.397779 |
Details available
Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:39.000Z
Updated: 2024-08-04T11:28:13.405Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11159 |
vulnerable | 2026-06-03 14:41:03.141210 |
Details available
Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:36.000Z
Updated: 2024-08-04T11:28:12.378Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11126 |
vulnerable | 2026-06-03 14:41:01.848769 |
Details available
Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-06-09T05:00:35.000Z
Updated: 2024-08-04T11:21:14.624Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11119 |
vulnerable | 2026-06-03 14:41:01.362334 |
Details available
Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Published: 2021-01-21T09:41:10.000Z
Updated: 2024-08-04T11:21:14.640Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.