CVE-2019-10589

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions APQ8017, APQ8053, APQ8098, MDM9206, MDM9607, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QM215, SDA660, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660

Description The issue is related to a lack of length check of the response buffer, which can lead to a buffer overflow while handling GP command response buffers in various Snapdragon products, including Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wired Infrastructure and Networking.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.