Vulnerabilities > Qualcomm > Sdw2500 > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-02-22 CVE-2020-11286 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
An Untrusted Pointer Dereference can occur while doing USB control transfers, if multiple requests of different standard request categories like device, interface & endpoint are made together.
low complexity
qualcomm CWE-119
6.8
2021-01-21 CVE-2020-11183 Classic Buffer Overflow vulnerability in Qualcomm products
A process can potentially cause a buffer overflow in the display service allowing privilege escalation by executing code as that service in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
local
low complexity
qualcomm CWE-120
6.7
2021-01-21 CVE-2020-11152 Race Condition vulnerability in Qualcomm products
Race condition in HAL layer while processing callback objects received from HIDL due to lack of synchronization between accessing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
local
high complexity
qualcomm CWE-362
6.4