VDB

CVE-2019-2251

CVE-2019-2251 PUBLISHED CVSS 7.199999809265137 HIGH

If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8016, APQ8096AU, APQ8098, MDM9205, MSM8996AU, MSM8998, Nicobar, QCS405, QCS605, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

EPSS 0.10% · 26.9th percentile

Risk Scores

CVSS 2.0
7.199999809265137
EPSS Score
0.10%
26.9th percentile

Affected Products

VendorProductVersions
qualcommqcs405_firmware
qualcommsdm845_firmware
qualcommnicobar_firmware
qualcommsm7150_firmware
qualcommmdm9205_firmware
qualcommsda845_firmware
Qualcomm, Inc.Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music*
qualcommsxr2130_firmware
qualcommsa6155p_firmware
qualcommsdx24_firmware
qualcommqcs605_firmware
qualcommsdm660_firmware
qualcommsm8250_firmware
qualcommapq8096au_firmware
qualcommsm8150_firmware
qualcommsdm670_firmware
qualcommapq8016_firmware
qualcommmsm8996au_firmware
qualcommsdm630_firmware
qualcommsdm850_firmware

…and 8 more

Exploit Intelligence

Timeline

  • Oct 8, 2019 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›