Vulnetix
Try Vulnetix Request Demo
CVE-2019-14112 PUBLISHED CVSS 9.800000190734863 CRITICAL

Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130

EPSS 0.36% · 57.7th percentile

Risk Scores

CVSS v3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.36%
57.7th percentile

Affected Products

VendorProductVersions
Qualcomm, Inc.Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and NetworkingAPQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
qualcommqcs605_firmware
qualcommsdm630_firmware
qualcommsdm636_firmware
qualcommsxr1130_firmware
qualcommsxr2130_firmware
qualcommsm7150_firmware
qualcommqcs404_firmware
qualcommsc7180_firmware
qualcommsdm670_firmware
qualcommsm8150_firmware
qualcommsda660_firmware
qualcommsdm850_firmware
qualcommnicobar_firmware
qualcommqca8081_firmware
qualcommsdm710_firmware
qualcommsm6150_firmware
qualcommqcn7605_firmware
qualcommsdm660_firmware
qualcommmsm8998_firmware

…and 7 more

Timeline

References

Open in Interactive Console →