threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qualcomm sm7250 firmware
Product
qualcomm sm7250 firmware
78 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2021-30327
all versions
Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile,
7.5
HIGH
CVE-2021-30284
all versions
Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto
7.5
HIGH
CVE-2021-30266
all versions
Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon
6.7
MEDIUM
CVE-2021-30265
all versions
Possible memory corruption due to improper validation of memory address while processing user-space IOCTL for clearing Filter and
6.7
MEDIUM
CVE-2021-30264
all versions
Possible use after free due improper validation of reference from call back to internal store table in Snapdragon Auto, Snapdragon
6.7
MEDIUM
CVE-2021-30259
all versions
Possible out of bound access due to improper validation of function table entries in Snapdragon Auto, Snapdragon Compute, Snapdrag
7.8
HIGH
CVE-2021-30255
all versions
Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in Snapdragon Auto, Snapdragon Compute, Snapd
7.8
HIGH
CVE-2021-30254
all versions
Possible buffer overflow due to improper input validation in factory calibration and test DIAG command in Snapdragon Auto, Snapdra
7.8
HIGH
CVE-2021-1982
all versions
Possible denial of service scenario due to improper input validation of received NAS OTA message in Snapdragon Auto, Snapdragon Co
7.5
HIGH
CVE-2021-1981
all versions
Possible buffer over read due to improper IE size check of Bearer capability IE in MT setup request from network in Snapdragon Aut
7.5
HIGH
CVE-2021-1979
all versions
Possible buffer overflow due to improper validation of FTM command payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn
7.8
HIGH
CVE-2021-1975
all versions
Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Comput
9.8
CRITICAL
CVE-2021-1973
all versions
A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivit
7.8
HIGH
CVE-2021-1924
all versions
Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon
9.0
CRITICAL
CVE-2021-1903
all versions
Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe res
5.3
MEDIUM
CVE-2021-30312
all versions
Improper authentication of sub-frames of a multicast AMSDU frame can lead to information disclosure in Snapdragon Auto, Snapdragon
7.5
HIGH
CVE-2021-30310
all versions
Possible buffer overflow due to Improper validation of received CF-ACK and CF-Poll data frames in Snapdragon Auto, Snapdragon Conn
7.5
HIGH
CVE-2021-30306
all versions
Possible buffer over read due to improper buffer allocation for file length passed from user space in Snapdragon Auto, Snapdragon
8.4
HIGH
CVE-2021-30297
all versions
Possible out of bound read due to improper validation of packet length while handling data transfer in VR service in Snapdragon Au
8.4
HIGH
CVE-2021-30292
all versions
Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Comp
8.4
HIGH
CVE-2021-30291
all versions
Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Comp
8.4
HIGH
CVE-2021-30288
all versions
Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Sn
8.4
HIGH
CVE-2021-30258
all versions
Possible buffer overflow due to improper size calculation of payload received in VR service in Snapdragon Auto, Snapdragon Compute
8.4
HIGH
CVE-2021-30257
all versions
Possible out of bound read or write in VR service due to lack of validation of DSP selection values in Snapdragon Compute, Snapdra
8.4
HIGH
CVE-2021-30256
all versions
Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compu
8.4
HIGH
CVE-2021-1985
all versions
Possible buffer over read due to lack of data length check in QVR Service configuration in Snapdragon Auto, Snapdragon Compute, Sn
8.4
HIGH
CVE-2021-1984
all versions
Possible buffer overflow due to improper validation of index value while processing the plugin block in Snapdragon Auto, Snapdrago
8.4
HIGH
CVE-2021-1983
all versions
Possible buffer overflow due to improper handling of negative data length while processing write request in VR service in Snapdrag
8.4
HIGH
CVE-2021-1980
all versions
Possible buffer over read due to lack of length check while parsing beacon IE response in Snapdragon Auto, Snapdragon Compute, Sna
7.5
HIGH
CVE-2021-1977
all versions
Possible buffer over read due to improper validation of frame length while processing AEAD decryption during ASSOC response in Sna
7.5
HIGH
CVE-2021-1967
all versions
Possible stack buffer overflow due to lack of check on the maximum number of post NAN discovery attributes while processing a NAN
5.3
MEDIUM
CVE-2021-1966
all versions
Possible buffer overflow due to lack of length check of source and destination buffer before copying in Snapdragon Auto, Snapdrago
6.7
MEDIUM
CVE-2021-1959
all versions
Possible memory corruption due to lack of bound check of input index in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi
7.8
HIGH
CVE-2021-1949
all versions
Possible integer overflow due to improper check of batch count value while sanitizer is enabled in Snapdragon Auto, Snapdragon Com
8.4
HIGH
CVE-2021-1936
all versions
Null pointer dereference can occur due to lack of null check for user provided input in Snapdragon Auto, Snapdragon Compute, Snapd
7.5
HIGH
CVE-2021-1917
all versions
Null pointer dereference can occur due to memory allocation failure in DIAG in Snapdragon Auto, Snapdragon Compute, Snapdragon Con
8.4
HIGH
CVE-2021-30261
all versions
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from
8.4
HIGH
CVE-2021-30260
all versions
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist
8.4
HIGH
CVE-2021-1976
all versions
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Com
9.8
CRITICAL
CVE-2021-1947
all versions
Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Con
8.4
HIGH
CVE-2021-1939
all versions
Null pointer dereference occurs due to improper validation when the preemption feature enablement is toggled in Snapdragon Auto, S
8.4
HIGH
CVE-2021-30295
all versions
Possible heap overflow due to improper validation of local variable while storing current task information locally in Snapdragon A
8.4
HIGH
CVE-2021-1974
all versions
Possible buffer over read due to lack of alignment between map or unmap length of IPA SMMU and WLAN SMMU in Snapdragon Auto, Snapd
7.5
HIGH
CVE-2021-1963
all versions
Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon
6.7
MEDIUM
CVE-2021-1961
all versions
Possible buffer overflow due to lack of offset length check while updating the buffer value in Snapdragon Auto, Snapdragon Compute
6.7
MEDIUM
CVE-2021-1960
all versions
Improper handling of ASB-C broadcast packets with crafted opcode in LMP can lead to uncontrolled resource consumption in Snapdrago
6.5
MEDIUM
CVE-2021-1952
all versions
Possible buffer over read occurs due to lack of length check of request buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon
7.8
HIGH
CVE-2021-1948
all versions
Possible out of bound read due to lack of length check of data while parsing the beacon or probe response in Snapdragon Auto, Snap
7.5
HIGH
CVE-2021-1946
all versions
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body in Snapdragon Auto, Snapdragon Com
9.8
CRITICAL
CVE-2021-1941
all versions
Possible buffer over read issue due to improper length check on WPA IE string sent by peer in Snapdragon Auto, Snapdragon Compute,
7.5
HIGH
CVE-2021-1935
all versions
Possible null pointer dereference due to lack of validation check for passed pointer during key import in Snapdragon Auto, Snapdra
7.1
HIGH
CVE-2021-1934
all versions
Possible memory corruption due to improper check when application loader object is explicitly destructed while application is unlo
8.4
HIGH
CVE-2021-1909
all versions
Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, S
7.3
HIGH
CVE-2021-1972
all versions
Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snap
9.8
CRITICAL
CVE-2021-1930
all versions
Possible out of bounds read due to incorrect validation of incoming buffer length in Snapdragon Auto, Snapdragon Compute, Snapdrag
5.5
MEDIUM
CVE-2021-1929
all versions
Lack of strict validation of bootmode can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec
6.2
MEDIUM
CVE-2021-1923
all versions
Incorrect pointer argument passed to trusted application TA could result in un-intended memory operations in Snapdragon Auto, Snap
7.8
HIGH
CVE-2021-1920
all versions
Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon C
9.8
CRITICAL
CVE-2021-1919
all versions
Integer underflow can occur when the RTCP length is lesser than the actual blocks present in Snapdragon Auto, Snapdragon Comp
9.8
CRITICAL
CVE-2021-1916
all versions
Possible buffer underflow due to lack of check for negative indices values when processing user provided input in Snapdragon Auto,
9.8
CRITICAL
CVE-2021-1914
all versions
Loop with unreachable exit condition may occur due to improper handling of unsupported input in Snapdragon Auto, Snapdragon Comput
7.5
HIGH
CVE-2021-1904
all versions
Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Sna
6.2
MEDIUM
CVE-2020-11301
all versions
Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapd
9.1
CRITICAL
CVE-2020-11264
all versions
Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injectio
9.1
CRITICAL
CVE-2020-3639
all versions
u'When a non standard SIP sigcomp message is received from the network, then there may be chances of using more UDVM cycle or memo
9.8
CRITICAL
CVE-2020-3632
all versions
u'Incorrect validation of ring context fetched from host memory can lead to memory overflow' in Snapdragon Compute, Snapdragon Mob
7.8
HIGH
CVE-2020-11207
all versions
Buffer overflow in LibFastCV library due to improper size checks with respect to buffer length' in Snapdragon Auto, Snapdragon Com
7.8
HIGH
CVE-2020-11206
all versions
Possible buffer overflow in Fastrpc while handling received parameters due to lack of validation on input parameters' in Snapdrago
7.8
HIGH
CVE-2020-11196
all versions
u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number of codec entries' in Snapdragon A
9.8
CRITICAL
CVE-2020-11193
all versions
u'Buffer over read can happen while parsing mkv clip due to improper typecasting of data returned from atomsize' in Snapdragon Aut
9.8
CRITICAL
CVE-2020-11184
all versions
u'Possible buffer overflow will occur in video while parsing mp4 clip with crafted esds atom size.' in Snapdragon Auto, Snapdragon
9.8
CRITICAL
CVE-2020-11175
all versions
u'Use after free issue in Bluetooth transport driver when a method in the object is accessed after the object has been deleted due
7.8
HIGH
CVE-2020-11168
all versions
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to access the buffer beyond its range'
9.8
CRITICAL
CVE-2020-11132
all versions
u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, S
7.1
HIGH
CVE-2020-11130
all versions
u'Possible buffer overflow in WIFI hal process due to copying data without checking the buffer length' in Snapdragon Auto, Snapdra
7.8
HIGH
CVE-2020-11127
all versions
u'Integer overflow can cause a buffer overflow due to lack of table length check in the extensible boot Loader during the validati
7.8
HIGH
CVE-2020-11123
all versions
u'information disclosure in gatekeeper trustzone implementation as the throttling mechanism to prevent brute force attempts at get
5.5
MEDIUM
CVE-2020-11121
all versions
u'Possible buffer overflow in WIFI hal process due to usage of memcpy without checking length of destination buffer' in Snapdragon
7.8
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin