Vulnerabilities > Qualcomm > Msm8909W Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-07-25 | CVE-2019-2253 | Out-of-bounds Read vulnerability in Qualcomm products Buffer over-read can occur while parsing an ogg file with a corrupted comment block. | 7.5 |
2019-07-25 | CVE-2018-13897 | Information Exposure vulnerability in Qualcomm products Clients hostname gets added to DNS record on device which is running dnsmasq resulting in an information exposure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 615/16/SD 415, SD 625, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 855, SDA660, SDM630, SDM660 | 5.0 |
2019-07-22 | CVE-2019-2287 | Out-of-bounds Write vulnerability in Qualcomm products Improper validation for inputs received from firmware can lead to an out of bound write issue in video driver. | 7.5 |
2019-07-22 | CVE-2019-2279 | Out-of-bounds Write vulnerability in Qualcomm products Shared memory gets updated with invalid data and may lead to access beyond the allocated memory. | 7.5 |
2019-07-22 | CVE-2019-2264 | Use After Free vulnerability in Qualcomm products Null pointer dereference occurs for channel context while opening glink channel in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9607, MDM9640, MSM8909W, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820A, SD 835, SD 845 / SD 850, SDM439, SDM630, SDM660, SDX24 | 4.6 |
2019-07-22 | CVE-2019-2260 | Use After Free vulnerability in Qualcomm products A race condition occurs while processing perf-event which can lead to a use after free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130 | 6.9 |
2019-07-22 | CVE-2019-2243 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Possible buffer overflow at the end of iterating loop while getting the version info and lead to information disclosure. | 2.1 |
2019-07-22 | CVE-2018-13924 | Out-of-bounds Write vulnerability in Qualcomm products Lack of check to prevent the buffer length taking negative values can lead to stack overflow. | 10.0 |
2019-06-14 | CVE-2019-2259 | Resource Exhaustion vulnerability in Qualcomm products Resource allocation error while playing the video whose dimensions are more than supported dimension in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130 | 10.0 |
2019-06-14 | CVE-2019-2257 | Incorrect Permission Assignment for Critical Resource vulnerability in Qualcomm products Wrong permissions in configuration file can lead to unauthorized permission in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, SD 210/SD 212/SD 205, SD 615/16/SD 415, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 855, SDA660, SDM660, SDX20, SDX24 | 7.2 |