PT-2020-9471 · Qualcomm · Snapdragon

Published

2020-02-07

Updated

2021-07-21

CVE-2019-14044

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions (affected versions not specified)

Description: The issue is related to out of bound access due to the access of an uninitialized memory segment in an array of pointers. This occurs during normal camera open and close operations in Snapdragon Consumer IOT and Snapdragon Mobile, specifically in QCS605, SDM439, SDM630, SDM636, SDM660, and SDX24.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Validation of Array Index

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129CWE-908

Related Identifiers

CVE-2019-14044

Affected Products

Snapdragon

PT-2020-9471 · Qualcomm · Snapdragon

CVE-2019-14044

Weakness Enumeration

Related Identifiers

Affected Products

References · 2