Vulnetix
Try Vulnetix Request Demo
CVE-2019-14012 PUBLISHED CVSS 7.5 HIGH

Possibility of null pointer deference as the array of video codecs from media info is referenced without null checking while processing SDP messages in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, Nicobar, QCM2150, QM215, Rennell, SC7180, SC8180X, SDA845, SDM429, SDM439, SDM450, SDM632, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150

EPSS 0.25% · 47.7th percentile

Risk Scores

CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.25%
47.7th percentile

Affected Products

VendorProductVersions
qualcommrennell_firmware
qualcommmsm8909_firmware
qualcommnicobar_firmware
qualcommmsm8937_firmware
qualcommsdx24_firmware
qualcommmsm8905_firmware
Qualcomm, Inc.Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon WearablesMSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, Nicobar, QCM2150, QM215, Rennell, SC7180, SC8180X, SDA845, SDM429, SDM439, SDM450, SDM632, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150
qualcommsdm632_firmware
qualcommsdm439_firmware
qualcommmsm8917_firmware
qualcommmsm8920_firmware
qualcommsdm429_firmware
qualcommmsm8953_firmware
qualcommqcm2150_firmware
qualcommsm8150_firmware
qualcommsm6150_firmware
qualcommsc8180x_firmware
qualcommsm7150_firmware
qualcommsda845_firmware
qualcommmsm8940_firmware

…and 5 more

Timeline

References

Open in Interactive Console →