CVE-2019-10546

Name of the Vulnerable Software and Affected Versions Snapdragon Auto versions APQ8096 through SM8250 Snapdragon Compute versions APQ8096 through SM8250 Snapdragon Connectivity versions APQ8096 through SM8250 Snapdragon Consumer Electronics Connectivity versions APQ8096 through SM8250 Snapdragon Consumer IOT versions APQ8096 through SM8250 Snapdragon Industrial IOT versions APQ8096 through SM8250 Snapdragon Mobile versions APQ8096 through SM8250 Snapdragon Wired Infrastructure and Networking versions APQ8096 through SM8250

Description A buffer overflow can occur in WLAN firmware while parsing beacon/probe response frames during roaming. This issue affects various Snapdragon products, including Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Mobile, and Wired Infrastructure and Networking.

Recommendations For all affected versions, update to a newer version that contains a fix for this issue. As a temporary workaround, consider disabling the WLAN firmware parsing of beacon/probe response frames during roaming until a patch is available. Restrict access to the vulnerable WLAN firmware to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.