漏洞标题
N/A
漏洞描述信息
"在骁龙汽车、骁龙计算、骁龙连接性、骁龙消费者电子产品连接、骁龙消费者物联网、骁龙工业物联网、骁龙手机、骁龙语音和音乐、骁龙 wearables 和骁龙有线基础设施和网络在APQ8009、APQ8017、APQ8053、APQ8096AU、APQ8098、IPQ6018、IPQ8074、 Kamorta 等人的应用中,缺乏对整数溢出的校验,导致内存错误和潜在的信息泄漏。具体来说,骁龙 automotive 的RoundUp 和 Add operations(向上取整和加法操作)没有进行整数溢出校验,这可能会导致数据损坏或丢失,以及系统崩溃或错误。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多款Qualcomm产品输入验证错误漏洞
漏洞描述信息
Qualcomm MDM9206等都是美国高通(Qualcomm)公司的产品。MDM9206是一款中央处理器(CPU)产品。MDM9607是一款中央处理器(CPU)产品。MDM9640是一款中央处理器(CPU)产品。 多款Qualcomm产品中的Qualcomm IPC存在输入验证错误漏洞。该漏洞源于网络系统或产品未对输入的数据进行正确的验证。以下产品及版本受到影响:Qualcomm APQ8009;APQ8017;APQ8053;APQ8096AU;APQ8098;IPQ6018;IPQ8074;Kam
CVSS信息
N/A
漏洞类别
输入验证错误