PT-2020-9504 · Qualcomm · Qualcomm Snapdragon
Published
2020-03-05
·
Updated
2020-03-06
·
CVE-2019-14081
CVSS v2.0
6.6
Medium
| Vector | AV:L/AC:L/Au:N/C:C/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Qualcomm Snapdragon versions in APQ8098, IPQ8074, MSM8998, QCA8081, QCN7605, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130
Description:
A buffer over-read issue occurs when the WLAN module receives a WMI message for SAR limits with an invalid number of limits to be enforced. This issue affects various Qualcomm Snapdragon products, including Compute, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Mobile, and Wired Infrastructure and Networking.
Recommendations:
For Qualcomm Snapdragon versions in APQ8098, IPQ8074, MSM8998, QCA8081, QCN7605, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qualcomm Snapdragon