CVE-2021-30351

all versions

An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapd

9.8CRITICAL

CVE-2021-30348

all versions

Improper validation of LLM utility timers availability can lead to denial of service in Snapdragon Auto, Snapdragon Compute, Snapd

6.5MEDIUM

CVE-2021-30337

all versions

Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdrago

8.4HIGH

CVE-2021-30336

all versions

Possible out of bound read due to lack of domain input validation while processing APK close session request in Snapdragon Auto, S

8.4HIGH

CVE-2021-30303

all versions

Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon

7.8HIGH

CVE-2021-30293

all versions

Possible assertion due to lack of input validation in PUSCH configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Conne

7.5HIGH

CVE-2021-30272

all versions

Possible null pointer dereference in thread cache operation handler due to lack of validation of user provided input in Snapdragon

7.3HIGH

CVE-2021-30271

all versions

Possible null pointer dereference in trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto,

7.3HIGH

CVE-2021-30269

all versions

Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute,

7.3HIGH

CVE-2021-30268

all versions

Possible heap Memory Corruption Issue due to lack of input validation when sending HWTC IQ Capture command in Snapdragon Auto, Sna

7.8HIGH

CVE-2021-30267

all versions

Possible integer overflow to buffer overflow due to improper input validation in FTM ARA commands in Snapdragon Auto, Snapdragon C

7.8HIGH

CVE-2021-1894

all versions

Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon

7.1HIGH

CVE-2021-30266

all versions

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon

6.7MEDIUM

CVE-2021-30264

all versions

Possible use after free due improper validation of reference from call back to internal store table in Snapdragon Auto, Snapdragon

6.7MEDIUM

CVE-2021-30259

all versions

Possible out of bound access due to improper validation of function table entries in Snapdragon Auto, Snapdragon Compute, Snapdrag

7.8HIGH

CVE-2021-30255

all versions

Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in Snapdragon Auto, Snapdragon Compute, Snapd

7.8HIGH

CVE-2021-30254

all versions

Possible buffer overflow due to improper input validation in factory calibration and test DIAG command in Snapdragon Auto, Snapdra

7.8HIGH

CVE-2021-1982

all versions

Possible denial of service scenario due to improper input validation of received NAS OTA message in Snapdragon Auto, Snapdragon Co

7.5HIGH

CVE-2021-1981

all versions

Possible buffer over read due to improper IE size check of Bearer capability IE in MT setup request from network in Snapdragon Aut

7.5HIGH

CVE-2021-1979

all versions

Possible buffer overflow due to improper validation of FTM command payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn

7.8HIGH

CVE-2021-1975

all versions

Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Comput

9.8CRITICAL

CVE-2021-1973

all versions

A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivit

7.8HIGH

CVE-2021-1903

all versions

Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe res

5.3MEDIUM