漏洞标题
N/A
漏洞描述信息
缺乏检查,即从共享内存读取的RX FIFO写入索引小于FIFO大小,会导致在Snapdragon Auto、Snapdragon Compute、Snapdragon Connectivity、Snapdragon Consumer IOT、Snapdragon Industrial IOT、Snapdragon Mobile、Snapdragon Voice & Music、Snapdragon Wearables、Snapdragon Wired Infrastructure和Networking中的APQ8009、APQ8017、APQ8053、APQ8096、APQ8096AU、APQ8098、IPQ6018、IPQ8074、MDM9150、MDM9205、MDM9206、MDM9607、MDM9640、MDM9645、MDM9650、MDM9655、MSM8905、MSM8917、MSM8920、MSM8937、MSM8940、MSM8953、MSM8996、MSM8996AU、MSM8998、Nicobar、QCA8081、QCM2150、QCS404、QCS405、QCS605、QM215、 Rennell、SA6155P、SC8180X、SDM429、SDM429W、SDM439、SDM450、SDM630、SDM632、SDM636、SDM660、SDM670、SDM710、SDM845、SDM850、SXR20、SXR24、SXR55、SM6150、SM7150、SM8150、SM8250、SXR1130、SXR2130。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多款Qualcomm产品信息泄露漏洞
漏洞描述信息
Qualcomm MDM9206等都是美国高通(Qualcomm)公司的产品。MDM9206是一款中央处理器(CPU)产品。SDX24是一款调制解调器。SDA660是一款中央处理器(CPU)产品。 多款Qualcomm产品中的Qualcomm IPC存在信息泄露漏洞,该漏洞源于程序无法检查RX FIFO写入索引是否小于FIFO。攻击者可借助特制的请求利用该漏洞获取敏感信息。以下产品及版本受到影响:Qualcomm APQ8009;APQ8017;APQ8053;APQ8096;APQ8096AU;APQ8
CVSS信息
N/A
漏洞类别
缓冲区错误