CVE-2019-10606

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions MDM9607, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, QCS605, SDX24

Description Out-of-bound access will occur in the USB driver due to a lack of check to validate the frame size passed by the user in various Snapdragon products, including Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, and Snapdragon Wearables.

Recommendations For versions MDM9607, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, QCS605, SDX24, at the moment, there is no information about a newer version that contains a fix for this issue.