Qualcomm Snapdragon Auto NAL Header heap-based overflow

EntryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as critical, has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT and Snapdragon Mobile (Chip Software). This issue affects some unknown functionality of the component NAL Header Handler. Upgrading eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1132915906/11/2021VulD...cvss3_meta_tempscore5.3see documentation06/11/2021accepted90
1132915806/11/2021VulD...cvss3_vuldb_tempscore5.306/11/2021accepted90
1132915706/11/2021VulD...cvss2_vuldb_tempscore4.506/11/2021accepted90
1132915606/11/2021VulD...confirm_urlhttps://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletincve.mitre.org06/11/2021accepted70
1132915506/11/2021VulD...cve_nvd_summaryPossible heap overflow while parsing NAL header due to lack of check of length of data received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobilecve.mitre.org06/11/2021accepted70
1132915406/11/2021VulD...cve_assigned1585605600cve.mitre.org06/11/2021accepted70
1132239606/09/2021VulD...price_0day$5k-$25ksee documentation06/09/2021accepted90
1132239506/09/2021VulD...cvss3_meta_tempscore5.5see documentation06/09/2021accepted90
1132239406/09/2021VulD...cvss3_meta_basescore5.5see documentation06/09/2021accepted90
1132239306/09/2021VulD...cvss3_vuldb_tempscore5.506/09/2021accepted90
1132239206/09/2021VulD...cvss3_vuldb_basescore5.506/09/2021accepted90
1132239106/09/2021VulD...cvss2_vuldb_tempscore5.206/09/2021accepted90
1132239006/09/2021VulD...cvss2_vuldb_basescore5.206/09/2021accepted90
1132238906/09/2021VulD...cvss3_vuldb_eXderived from historical data06/09/2021accepted80
1132238806/09/2021VulD...cvss3_vuldb_prLderived from historical data06/09/2021accepted80
1132238706/09/2021VulD...cvss3_vuldb_avAderived from historical data06/09/2021accepted80
1132238606/09/2021VulD...cvss2_vuldb_eNDderived from historical data06/09/2021accepted80
1132238506/09/2021VulD...cvss2_vuldb_auSderived from historical data06/09/2021accepted80
1132238406/09/2021VulD...cvss2_vuldb_avAderived from historical data06/09/2021accepted80
1132238306/09/2021VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector06/09/2021accepted80

Do you know our Splunk app?

Download it now for free!