← Back

CVE-2019-2294

nvd nist
Published: Sep 30, 2019Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130

Affected (47)

Products: Qualcomm: Mdm9205 Firmware, Mdm9206 Firmware, Mdm9607 Firmware, Mdm9615 Firmware, Mdm9625 Firmware, Mdm9635m Firmware, Mdm9655 Firmware, Msm8909w Firmware, Msm8996au Firmware, Qcs605 Firmware, Qualcomm 215 Firmware, Sd 210 Firmware, Sd 212 Firmware, Sd 205 Firmware, Sd 410 Firmware, Sd 412 Firmware, Sd 425 Firmware, Sd 427 Firmware, Sd 430 Firmware, Sd 435 Firmware, Sd 439 Firmware, Sd 429 Firmware, Sd 450 Firmware, Sd 625 Firmware, Sd 632 Firmware, Sd 636 Firmware, Sd 650 Firmware, Sd 652 Firmware, Sd 665 Firmware, Sd 675 Firmware, Sd 712 Firmware, Sd 710 Firmware, Sd 670 Firmware, Sd 730 Firmware, Sd 820 Firmware, Sd 820a Firmware, Sd 835 Firmware, Sd 845 Firmware, Sd 850 Firmware, Sd 855 Firmware, Sd 8cx Firmware, Sda660 Firmware, Sdm439 Firmware, Sdm630 Firmware, Sdm660 Firmware, Snapdragon High Med 2016 Firmware, Sxr1130 Firmware
Qualcomm
47 products
Mdm9205 Firmware
Mdm9206 Firmware
Mdm9607 Firmware
Mdm9615 Firmware
Mdm9625 Firmware
Mdm9635m Firmware
Mdm9655 Firmware
Msm8909w Firmware
Msm8996au Firmware
Qcs605 Firmware
Qualcomm 215 Firmware
Sd 210 Firmware
Sd 212 Firmware
Sd 205 Firmware
Sd 410 Firmware
Sd 412 Firmware
Sd 425 Firmware
Sd 427 Firmware
Sd 430 Firmware
Sd 435 Firmware
Sd 439 Firmware
Sd 429 Firmware
Sd 450 Firmware
Sd 625 Firmware
Sd 632 Firmware
Sd 636 Firmware
Sd 650 Firmware
Sd 652 Firmware
Sd 665 Firmware
Sd 675 Firmware
Sd 712 Firmware
Sd 710 Firmware
Sd 670 Firmware
Sd 730 Firmware
Sd 820 Firmware
Sd 820a Firmware
Sd 835 Firmware
Sd 845 Firmware
Sd 850 Firmware
Sd 855 Firmware
Sd 8cx Firmware
Sda660 Firmware
Sdm439 Firmware
Sdm630 Firmware
Sdm660 Firmware
Snapdragon High Med 2016 Firmware
Sxr1130 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9205 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9205
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9206 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9206
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9607 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9607
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9615 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9615
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9625 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9625
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9635m Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9635m
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9655 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9655
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Msm8909w Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Msm8909w
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Msm8996au Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Msm8996au
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Qcs605 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Qcs605
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Qualcomm 215 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Qualcomm 215
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 210 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 210
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 212 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 212
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 205 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 205
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 410 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 410
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 412 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 412
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 425 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 425
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 427 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 427
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 430 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 430
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 435 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 435
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 439 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 439
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 429 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 429
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 450 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 450
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 625 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 625
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 632 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 632
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 636 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 636
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 650 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 650
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 652 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 652
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 665 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 665
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 675 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 675
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 712 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 712
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 710 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 710
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 670 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 670
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 730 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 730
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820a Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820a
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 835 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 835
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 845 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 845
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 850 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 850
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 855 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 855
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 8cx Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 8cx
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sda660 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sda660
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm439 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm439
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm630 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm630
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm660 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm660
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Snapdragon High Med 2016 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Snapdragon High Med 2016
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sxr1130 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sxr1130
All versions

Related CWEs

CWE-330
Use of Insufficiently Random Values
The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

References (2)

Source: product-security@qualcomm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.