CVE-2019-14040

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions (affected versions not specified)

Description: The issue is related to the use of memory after it has been freed in the qsee component due to a wrong implementation. This can lead to unexpected behavior, including the execution of unknown code. The affected products include Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, and Snapdragon Wearables. The estimated number of potentially affected devices is not provided.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.