CVE-2019-10494

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCN7605, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150

Description A race condition exists between camera functions due to a lack of resource lock, leading to memory corruption and Use After Free (UAF) issues. This issue affects various Qualcomm Snapdragon products, including those used in automotive, consumer electronics, industrial IoT, mobile, voice and music, and wearables.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.