CVE-2019-10510

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions (affected versions not specified)

Description The issue occurs due to a null pointer dereference when an invalid vendor pass through command is sent from a remote source, causing the BT process to die and BT to toggle. This affects various Snapdragon products, including Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, and Snapdragon Voice & Music, in several chipsets such as QCS405, QCS605, SD 636, SD 675, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM630, and SDM660.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.