Filtered by vendor Qualcomm
Subscribe
Total
2449 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-0889 | 1 Qualcomm | 1 Qpopper | 2025-04-03 | 4.6 MEDIUM | N/A |
|
Buffer overflow in Qpopper (popper) 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitrary code via a long bulldir argument in the user's .qpopper-options configuration file.
|
|||||
| CVE-2000-0320 | 2 Qualcomm, Sun | 3 Qpopper, Cobalt Raq 2, Cobalt Raq 3i | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in \n.
|
|||||
| CVE-2004-2005 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.1 MEDIUM | N/A |
|
Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link to a long URL to the C drive or (2) a long attachment name.
|
|||||
| CVE-2000-0342 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.0 MEDIUM | 7.5 HIGH |
|
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."
|
|||||
| CVE-2006-0637 | 1 Qualcomm | 1 Eudora Worldmail | 2025-04-03 | 7.5 HIGH | N/A |
|
Buffer overflow in cram.dll in QUALCOMM Eudora WorldMail 3.0 allows remote attackers to execute arbitrary code via an IMAP APPEND command with a long message literal argument, as demonstrated by Worldmail.pl. NOTE: this is a different vector and a different manipulation than CVE-2005-4267, so it might be a different vulnerability than CVE-2005-4267.
|
|||||
| CVE-2003-0376 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Buffer overflow in Eudora 5.2.1 allows remote attackers to cause a denial of service (crash and failed restart) and possibly execute arbitrary code via an Attachment Converted argument with a large number of . (dot) characters.
|
|||||
| CVE-2005-3098 | 1 Qualcomm | 1 Qpopper | 2025-04-03 | 4.6 MEDIUM | N/A |
|
poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) command line argument.
|
|||||
| CVE-2001-0677 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted" MIME header, which sends the file when the email is forwarded to the attacker by the user.
|
|||||
| CVE-1999-0427 | 1 Qualcomm | 3 Eudora, Eudora Light, Eudora Pro | 2025-04-03 | 7.5 HIGH | N/A |
|
Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names.
|
|||||
| CVE-2002-0454 | 1 Qualcomm | 1 Qpopper | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Qpopper (aka in.qpopper or popper) 4.0.3 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a very large string, which causes an infinite loop.
|
|||||
| CVE-1999-0822 | 1 Qualcomm | 1 Qpopper | 2025-04-03 | 10.0 HIGH | N/A |
|
Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command.
|
|||||
| CVE-2002-2351 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 6.4 MEDIUM | N/A |
|
Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).
|
|||||
| CVE-2001-1046 | 1 Qualcomm | 1 Qpopper | 2025-04-03 | 10.0 HIGH | N/A |
|
Buffer overflow in qpopper (aka qpop or popper) 4.0 through 4.0.2 allows remote attackers to gain privileges via a long username.
|
|||||
| CVE-2003-0336 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Qualcomm Eudora 5.2.1 allows remote attackers to read arbitrary files via an email message with a carriage return (CR) character in a spoofed "Attachment Converted:" string, which is not properly handled by Eudora.
|
|||||
| CVE-2005-3189 | 1 Qualcomm | 1 Worldmail Imap Server | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command.
|
|||||
| CVE-2001-1326 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 7.5 HIGH | N/A |
|
Eudora 5.1 allows remote attackers to execute arbitrary code when the "Use Microsoft Viewer" option is enabled and the "allow executables in HTML content" option is disabled, via an HTML email with a form that is activated from an image that the attacker spoofs as a link, which causes the user to execute the form and access embedded attachments.
|
|||||
| CVE-1999-1016 | 2 Microsoft, Qualcomm | 4 Frontpage, Internet Explorer, Outlook Express and 1 more | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell.
|
|||||
| CVE-1999-0006 | 1 Qualcomm | 1 Qpopper | 2025-04-03 | 10.0 HIGH | 9.8 CRITICAL |
|
Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command.
|
|||||
| CVE-2005-4267 | 1 Qualcomm | 1 Worldmail | 2025-04-03 | 7.5 HIGH | N/A |
|
Stack-based buffer overflow in Qualcomm WorldMail 3.0 allows remote attackers to execute arbitrary code via a long IMAP command that ends with a "}" character, as demonstrated using long (1) LIST, (2) LSUB, (3) SEARCH TEXT, (4) STATUS INBOX, (5) AUTHENTICATE, (6) FETCH, (7) SELECT, and (8) COPY commands.
|
|||||
| CVE-2000-0874 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Eudora mail client includes the absolute path of the sender's host within a virtual card (VCF).
|
|||||
| CVE-2000-0442 | 2 Qualcomm, Sun | 3 Qpopper, Cobalt Raq 2, Cobalt Raq 3i | 2025-04-03 | 7.5 HIGH | N/A |
|
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.
|
|||||
| CVE-2004-1944 | 1 Qualcomm | 1 Eudora | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message.
|
|||||
| CVE-2024-53030 | 1 Qualcomm | 88 Msm8996au, Msm8996au Firmware, Qam8255p and 85 more | 2025-03-07 | N/A | 7.8 HIGH |
|
Memory corruption while processing input message passed from FE driver.
|
|||||
| CVE-2024-53031 | 1 Qualcomm | 52 Qam8255p, Qam8255p Firmware, Qam8295p and 49 more | 2025-03-07 | N/A | 7.8 HIGH |
|
Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.
|
|||||
| CVE-2024-53032 | 1 Qualcomm | 52 Qam8255p, Qam8255p Firmware, Qam8295p and 49 more | 2025-03-07 | N/A | 7.8 HIGH |
|
Memory corruption may occur in keyboard virtual device due to guest VM interaction.
|
|||||
| CVE-2024-53033 | 1 Qualcomm | 16 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 13 more | 2025-03-07 | N/A | 7.8 HIGH |
|
Memory corruption while doing Escape call when user provides valid kernel address in the place of valid user buffer address.
|
|||||
| CVE-2024-53034 | 1 Qualcomm | 16 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 13 more | 2025-03-07 | N/A | 7.8 HIGH |
|
Memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync object handle are passed with the DriverKnownEscape flag reset.
|
|||||
| CVE-2024-53028 | 1 Qualcomm | 72 Qam8255p, Qam8255p Firmware, Qam8295p and 69 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption may occur while processing message from frontend during allocation.
|
|||||
| CVE-2024-43055 | 1 Qualcomm | 28 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 25 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption while processing camera use case IOCTL call.
|
|||||
| CVE-2024-53029 | 1 Qualcomm | 52 Qam8255p, Qam8255p Firmware, Qam8295p and 49 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.
|
|||||
| CVE-2024-53022 | 1 Qualcomm | 46 Qam8255p, Qam8255p Firmware, Qam8295p and 43 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption may occur during communication between primary and guest VM.
|
|||||
| CVE-2024-53025 | 1 Qualcomm | 36 Fastconnect 7800, Fastconnect 7800 Firmware, Sm8750 and 33 more | 2025-03-06 | N/A | 5.5 MEDIUM |
|
Transient DOS can occur while processing UCI command.
|
|||||
| CVE-2024-43059 | 1 Qualcomm | 40 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 37 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
|
|||||
| CVE-2024-43060 | 1 Qualcomm | 82 Ar8035, Ar8035 Firmware, Fastconnect 6900 and 79 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.
|
|||||
| CVE-2024-43061 | 1 Qualcomm | 60 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 57 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.
|
|||||
| CVE-2024-43062 | 1 Qualcomm | 28 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 25 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization.
|
|||||
| CVE-2024-45580 | 1 Qualcomm | 74 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 71 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.
|
|||||
| CVE-2024-49836 | 1 Qualcomm | 58 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 55 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.
|
|||||
| CVE-2024-53012 | 1 Qualcomm | 52 Qam8255p, Qam8255p Firmware, Qam8295p and 49 more | 2025-03-06 | N/A | 7.8 HIGH |
|
Memory corruption may occur due to improper input validation in clock device.
|
|||||
| CVE-2018-11816 | 1 Qualcomm | 28 9206 Lte Modem, 9206 Lte Modem Firmware, Apq8016 and 25 more | 2025-02-06 | N/A | 7.8 HIGH |
|
Crafted Binder Request Causes Heap UAF in MediaServer
|
|||||