← Back

CVE-2019-2269

nvd nist
Published: Jul 22, 2019Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Possible buffer overflow while processing the high level lim process action frame due to improper buffer length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9650, MSM8996AU, QCS405, QCS605, SD 625, SD 636, SD 665, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130

Affected (24)

Qualcomm
24 products
Mdm9150 Firmware
Mdm9650 Firmware
Msm8996au Firmware
Qcs405 Firmware
Qcs605 Firmware
Sd 625 Firmware
Sd 636 Firmware
Sd 665 Firmware
Sd 712 Firmware
Sd 710 Firmware
Sd 670 Firmware
Sd 730 Firmware
Sd 820 Firmware
Sd 820a Firmware
Sd 835 Firmware
Sd 845 Firmware
Sd 850 Firmware
Sd 855 Firmware
Sda660 Firmware
Sdm630 Firmware
Sdm660 Firmware
Sdx20 Firmware
Sdx24 Firmware
Sxr1130 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9150 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9150
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9650 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9650
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Msm8996au Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Msm8996au
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Qcs405 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Qcs405
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Qcs605 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Qcs605
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 625 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 625
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 636 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 636
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 665 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 665
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 712 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 712
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 710 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 710
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 670 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 670
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 730 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 730
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820a Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820a
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 835 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 835
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 845 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 845
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 850 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 850
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 855 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 855
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sda660 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sda660
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm630 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm630
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm660 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm660
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdx20 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdx20
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdx24 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdx24
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sxr1130 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sxr1130
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (2)

Source: product-security@qualcomm.com
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory

Timeline

No history available yet.