CVE-2019-2320

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8976, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, Snapdragon High Med 2016, SXR1130, SXR2130

Description The issue is related to a possible out of bounds write in a MT SMS/SS scenario due to improper validation of array index in various Qualcomm Snapdragon products.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.